[Openswan Users] Tunnel goes down for no reason
Paul Wouters
paul at xelerance.com
Sat Sep 8 09:23:03 EDT 2007
On Sat, 8 Sep 2007, Roland Plüss wrote:
> I have a static tunnel which connects a home network to a company
> network. The tunnel works in both directions the way it should. Now the
> problem is that after some time of not being used ( for example over
> night ) the tunnel suddenly goes down. This means the tunnel is reported
> to be up put no ping goes through from the home network to the company
> network. Once I send a ping from the company network over to the home
> network the tunnel is again open in both directions.
>
> Anybody knows what could cause such a problem?
If you are doing NAT-Traversal, your NAT router might be timing out the
port mapping.
> I put in the ipsec.conf
> the left side as the machine with the config file ( so at home left is
> home and at the company company is left ). Can this cause troubles? Is
No. Left is "the left side of your diagram". It is completely arbitrary.
> there an option I can use to force the tunnel to stay open in both
> directions all the time? How comes one way can go down and the other way
> stays open? I'm a bit confused on this one and don't know where to start
> looking for the problem.
You have to first figure out why it is going down. Are both sides openswan?
If both end support DPD, you can enable that.
Paul
--
Building and integrating Virtual Private Networks with Openswan:
http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155
More information about the Users
mailing list