[Openswan Users] Sonicwall tunnel keeps disconnecting
Mike A. Leonetti
mleonetti at evolutionce.com
Thu Mar 11 16:55:13 EST 2010
Gaiseric Vandal wrote:
> Maybe a NAT thing?
>
> The following entry under config section may help
>
> nat_traversal=yes
>
>
> Do you also have Windows VPN clients? Do they have the same problem?
> The general issue I had with Sonicwall was DPD (dead peer detection)
> packets that didn't go through NAT.
>
>
>
> On 03/11/2010 01:52 PM, Mike A. Leonetti wrote:
>
>> It seems at random times the tunnel between the machine and the
>> Sonicwall device keep disconnecting. I haven't been able to isolate how
>> long it takes or why. Are there any options I may be missing?
>>
>> Config:
>> conn sonicwall
>> left=x.x.x.x
>> leftsourceip=10.1.1.1
>> leftsubnet=10.1.1.0/24
>> leftid=x.x.x.x
>> right=y.y.y.y
>> rightsubnet=10.10.12.0/24
>> rightid=y.y.y.y
>> keyingtries=0
>> pfs=no
>> aggrmode=yes
>> auto=start
>> auth=esp
>> esp=3des-sha1
>> ike=3des-sha1
>> authby=secret
>> keyexchange=ike
>>
>> _______________________________________________
>> Users at openswan.org
>> http://lists.openswan.org/mailman/listinfo/users
>> Building and Integrating Virtual Private Networks with Openswan:
>> http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155
>>
>>
>
> _______________________________________________
> Users at openswan.org
> http://lists.openswan.org/mailman/listinfo/users
> Building and Integrating Virtual Private Networks with Openswan:
> http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155
>
>
This is the rest of my config:
version 2.0
config setup
nat_traversal=yes
oe=off
protostack=netkey
I don't have any Windows users on these.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.openswan.org/pipermail/users/attachments/20100311/e0076e26/attachment.html
More information about the Users
mailing list