PfSense IPSec dropping connection with Microsoft TMG during files transfer.
-
I have IPSec configured on a site to site VPN between pfSense 2.0.1 (branch office) and Microsoft TMG 2010 (headquarter).
The tunnel is up for days as far we do not transfer big files, if I attempt to transfer a 2GB file over the vpn it drops the connection after the first 1 to 1.2GB most of the times. Out of 10 to 12 attempts I get a successful transfer. When the tunnel lose connection it takes from 20 to 30 minutes to come back unless I disable and re-enabled IPsec on pfSense. We have 50Mbits fiber on both ends and never have issues with either of the ISPs, nor downloading or uploading files from/to sites on the Internet. No problems with L2TP or PPTP from individual users connecting directly on TMG either.
I have tried several different settings for Phase I and Phase II with no luck, also disabled NAT Traversal and DPD on pfSense, no difference.Thanks for you help. It will be appreciated.
Note: Latest service packs and updates installed on Windows 2008 R2 and TMG 2010.
-
Sounds like TMG is configured with a byte-based lifetime where it shouldn't be, should be strictly time-based.
-
cmb,
Not really, TMG is configured only time-based. Also, it not only drops the connection after a certain amount of bytes, it could even finish copying the entire file, like I said one in 10 to 12 times.
Thanks.