[Openswan Users] connection dropping.
Elison Niven
elison.niven at elitecore.com
Fri Sep 7 00:13:38 EDT 2012
Hello,
Why are you not using dpd ? Add this to your conf :
dpdaction=restart_by_peer
dpddelay=30
dpdtimeout=120
On Thursday 06 September 2012 08:33 PM, Mitsuo Yazawa wrote:
> Hi,
>
> I have this connection which connects perfectly and all. but it
> keeps disconecting in random times. I need a way to make it stop
> disconnecting
> this is my setup:
> conn tunnelipsec
> #CLIENT
> left=<MyIP>
> leftsubnet=10.90.48.10/32
> #REMOTEHOST
> right=<targetIP>
> rightsubnet=10.90.0.0/16
> authby=secret
> auto=start
> compress=no
> type=tunnel
> pfs=yes
> forceencaps=yes
> #PHASE1
> keylife=28800s
> #PHASE2
> phase2=esp
> phase2alg=3des-sha1,aes128-sha1;modp1536
> ikelifetime=1800s
> rekey=yes
> rekeymargin=15m
>
> I also added
>
> force_keepalive=yes
> keep_alive=10
> to see if that helped keeping it alive (with no different result)
> For now I made my own script to detect disconnection, and restart
> ipsec service. which has been working but not what I want.
>
> any help i would appreciate.
> Mitsuo
>
>
> _______________________________________________
> Users at lists.openswan.org
> https://lists.openswan.org/mailman/listinfo/users
> Micropayments: https://flattr.com/thing/38387/IPsec-for-Linux-made-easy
> Building and Integrating Virtual Private Networks with Openswan:
> http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155
--
Best Regards,
Elison Niven
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openswan.org/pipermail/users/attachments/20120907/595b8519/attachment.html>
More information about the Users
mailing list