Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    IPSec tunnel instability

    Scheduled Pinned Locked Moved IPsec
    2 Posts 2 Posters 1.6k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • T
      ttblum
      last edited by

      Hello,

      I am running 2.0 RC3 (hope to upgrade soon), and I am finding that my IPSec tunnels to various devices (Linksys RV042, Cisco PIX, Watchguard Firebox, etc.) will tend to go down on their own unless I am sending traffic constantly through the tunnel with OpenNMS.

      I recently made a change to allow UDP 4500 on the firewall as well as UDP 500.  Will this help my stability problems or do I need to make some other change?  I do configure the Phase 2 monitoring IP address, but this does not seem to keep the tunnel stable without traffic going through it originating from my end.

      Thanks,

      Todd

      1 Reply Last reply Reply Quote 0
      • C
        cmb
        last edited by

        IPsec connections don't stay up unless you're sending traffic across them. Though that generally doesn't matter, as soon as something tries to send something across they'll come up within 1-2 seconds. As long as the local subnet includes one of the IPs assigned to the firewall, the ping host will keep it up.

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.