[ previous ] [ next ] [ threads ]
 
 From:  "Wilfred E. Savery" <wilfred dot savery at innovadotnet dot com>
 To:  "'Thorsten Schmale'" <Thorsten dot Schmale at gmx dot net>, <m0n0wall at lists dot m0n0 dot ch>
 Cc:  <walterpc at mchsi dot com>, <m0n0wall at lists dot m0n0 dot ch>
 Subject:  RE: [m0n0wall] VPN site to site loosing connection every hour
 Date:  Mon, 15 May 2006 18:06:15 -0600
I will check this part on the cisco, it could be a possibility, let hope I
get this fix, otherwise I will be babysitting this application for every
hour :) jeje

W.S:

-----Original Message-----
From: Thorsten Schmale [mailto:Thorsten dot Schmale at gmx dot net] 
Sent: Monday, May 15, 2006 2:05 PM
To: m0n0wall at lists dot m0n0 dot ch
Cc: walterpc at mchsi dot com; m0n0wall at lists dot m0n0 dot ch
Subject: RE: [m0n0wall] VPN site to site loosing connection every hour

What do you have for a cisco device?
I experienced something similar with a vpn connection to a cisco 3000 vpn
concentrator. In that particular configuration the dead peer detection was a
problem, because of the proprietary vpn implementation from cisco. I think
the vpn concentrator sends periodically dpd advertisements in their format
and the other side doesn't answer in the format which cisco expects. Thats
the reason why cisco thinks, the remote station is dead and cancels the
connection.
After disabling dpd on both sides the vpn connection was stable.

Thorsten Schmale


> Von: "Wilfred E. Savery" <wilfred dot savery at innovadotnet dot com>
> An: <walterpc at mchsi dot com>, <m0n0wall at lists dot m0n0 dot ch>
> Betreff: RE: [m0n0wall] VPN site to site loosing connection every hour
> Datum: Mon, 15 May 2006 14:33:49 -0600
> 
> On my DSL connection I have a static IP transferring DMZ to m0n0. DHCP is
> set for 24 hours; only thin left to check is the cisco config.
> 
> So far everything seem to be good on my side
> 
> W.S:
> 
> 
> -----Original Message-----
> From: Walter PC [mailto:walterpc at mchsi dot com] 
> Sent: Monday, May 15, 2006 1:08 PM
> To: m0n0wall at lists dot m0n0 dot ch
> Subject: Re: [m0n0wall] VPN site to site loosing connection every hour
> 
> Do you have a static IPs or DHCP for the WAN on either end?  if DHCP on 
> either side, Check the DHCP lease times.  If the DHCP lease is only set 
> to 1 hour - then every hour the tunnel will be broken as the m0n0 does a 
> renewal of IPs - I do Internet support for hotels and we see this type 
> of thing all the time when people are gaming online or VPN and when the 
> lease runs out, they get bounced and have to log back in - just 
> something to check.
> 
> Ken.
> 
> 
> Wilfred E. Savery wrote:
> > Hi...
> >
> > I have been experimenting an odd thing.
> > Every hour my VPN connections is lost, when it happen the first time I
> say
> > to my self it could be my ISP, but today I tested it/time it... and
> every
> > hour for sure is down so I have to reset in order to reestablish.
> >
> > Have anybody have encountered such situation?
> >
> > Any pointer and how to solved this.
> > My conection goes from m0n0 1.22 to cisco router
> >
> > Thanks best regards
> >
> > W.S:
> >
> >
> >
> > ---------------------------------------------------------------------
> > To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
> > For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch
> >
> >
> >
> >   
> 
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
> For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch
> 
> 
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
> For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch
> 

-- 

"Feel free" mit GMX DSL! http://www.gmx.net/de/go/dsl

---------------------------------------------------------------------
To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch