Vpn ikev2 re-establishing if the option fall back to primary is selected

Hoygen83
Hoygen83 Posts: 21  Freshman Member
in Security
Hello,
I have a usg flex 700 behind a nat, establishing vpn with another site.
I can see that if the option in the gateway settings "fall back to primay peer" is selected, and it is set to 3600 seconds, every hour the vpn has a disconnection.
That happens even if the vpn is connected to the primary peer ip.
So I am wondering, is there a specific log that can help me discover if there is something in the middle disturbing it?
Regards

All Replies

  • mMontana
    mMontana Posts: 642  Guru Member
    WAN connections are verifing the connection status? On remote (calling) and local (waiting) side.
  • Zyxel_Jeff
    Zyxel_Jeff Posts: 289  Zyxel Employee

    Can you share the screenshot of the 3600 seconds parameter configuration with us?
    BTW, while the VPN disconnects you can navigate the Web-GUI path: Monitor->Log -> View Log to see if there is any VPN disconnection related log.  If so, you can share the log with us, too. Maybe we can analyze that for you, thanks.

  • Zyxel_Jeff
    Zyxel_Jeff Posts: 289  Zyxel Employee
    Hi @Hoygen83

    One more question, if the VPN is disconnected, does the traffic still can be passed via the VPN tunnel?  Or not? Thanks.
  • Hoygen83
    Hoygen83 Posts: 21  Freshman Member
    when it is disconnected it will not pass.
  • Zyxel_Jeff
    Zyxel_Jeff Posts: 289  Zyxel Employee
    edited June 23
    Hoygen83 

    Thanks for your update. Can you share your VPN-related settings screenshots with us?  BTW, while the VPN disconnects are there any suspect logs relates to disconnection on the Monitor log? 

Categories

Security Highlight


Read more

Security Help Center

  • FAQ
  • New & Release
  • Monthly Express
  • Threat Intelligence
  • Video Tutorials
    • EnglishРусский中文(台灣)