0

I have a site to site VPN set up with a vendor. I can hit the remote servers consistently for about 2 weeks, and then all new connection attempts time out. No ping, no http, nothing. If I go into my firewall config and turn off the VPN and then turn it back on, the connections begin working again.

I have a number of other VPNs set up that don't have this problem, so I'm thinking this is either an issue with the remote server and/or firewall. What things should I try to fix this?

dan
  • 426
  • 7
  • 21

1 Answers1

0

We've seen that happen too. Have you looked at the IKE dead peer detection on the advanced screen on your Sonicwall? Basically the idea behind this is that if it missed so many heartbeats it will assume the IKE peer is DOA and disconnect. Keep an eye on your logs, odds are the other side is rebooting their FW or there is an interuption between you and your vendor.

MikeAWood
  • 2,566
  • 1
  • 12
  • 13
  • It's also possible that it's not automatically rekeying properly. I've seen that happen a number of times - and it always seems to happen when the re-key intervals are slightly off - so for some period of time it'll accept the time drift, then one device will stop re-keying and you have to reset. – Driftpeasant Dec 07 '11 at 04:33