From: Michael Baverso <mbaverso@el...> - 2006-02-14 04:23:18
i have set up a successful connection with FC4 and multitech vpn router
however after a period of time the connection dies. i have set
natt_keepalive to 10 secs, but never see packet sent via tcpdump or
From: Michael Baverso <mbaverso@el...> - 2006-02-15 02:58:05
I apologize for not being more prepared with info to assist with my
question, I didn't anticipate such a timely response. I am collecting
info and will post if this email doesn't resolve issue. I am a newbie to
racoon/ipsec. I do successfully establish a tunnel and have access to
resources on the server that I require, web pages, dns etc.... After
some period(trying to determine exact time) of idle time the connection
closes (I assume this is Phase 2 lifetime?). This may be a
misunderstanding on my part. Racoon is the initiator, multitech the
responder. In order to trigger connection I must ping multitech router
which makes sense according to docs I read(kernel needs trigger). The
server with racoon is in a remote office, most of the communication
requests come from local office(multitech side) in order to keep
connection active I set server to ping multitech on 20 sec
intervals....I am assuming that keepalive should do this??
On Mon, Feb 13, 2006 at 11:23:06PM -0500, Michael Baverso wrote:
> i have set up a successful connection with FC4 and multitech vpn router
> however after a period of time the connection dies. i have set
> natt_keepalive to 10 secs, but never see packet sent via tcpdump or
Could you give us more details ?
Is the period of time related to phase1 or phase2 lifetime ?
Is it quite constant, or totally random ?
Do you have some racoon debug when it happens ? do you still have
valid SAs ?