IPSec disconnected after lifetime, takes about two minutes to reconnect
I am having an issue where Zyxel initiated IPSec tunnel is periodically disconnected after lifetime period and gets reconnected after about 2 minutes of disruption.
What can I do to have the tunnel stable?
Logs:
2024-04-10 14:55:48 The cookie pair is : 0xd3a7316a7d603621 / 0x5d9704e0306922fd [count=4]
2024-04-10 14:55:48 Send:[HASH][DEL] [count=3]
2024-04-10 14:55:48 ISAKMP SA [mKerioIKEv1] is disconnected
2024-04-10 14:57:37 The cookie pair is : 0xee18ebc0a2e3a3e6 / 0x0000000000000000 [count=3]
2024-04-10 14:57:37 Tunnel [mKerioVPN] Sending IKE request
All Replies
-
Hi @mik256
You can extend the Phase1 and Phase2 SA life time and verify the VPN connection again.
The default phase 1 SA life time is 86400 seconds, as shown below:
The default phase 1 SA life time is 28800 seconds, as shown below:
Thanks.
Share your feedback through our survey, make your voice heard, and win a WiFi 7 AP! https://bit.ly/2024_Survey_Community
0 -
I have been playing with lifetime for a few weeks now. Trying different combinations on both ends (equal, higher/lower on one side)..
0 -
Hi @mik256
Thank you for your comment. Can we check your firewall via the remote Web-GUI? We will send you a private message later, so please check your inbox. Thank you.
Share your feedback through our survey, make your voice heard, and win a WiFi 7 AP! https://bit.ly/2024_Survey_Community
0
Zyxel Employee
Categories
- All Categories
- 415 Beta Program
- 2.4K Nebula
- 144 Nebula Ideas
- 94 Nebula Status and Incidents
- 5.6K Security
- 239 USG FLEX H Series
- 267 Security Ideas
- 1.4K Switch
- 71 Switch Ideas
- 1.1K Wireless
- 40 Wireless Ideas
- 6.3K Consumer Product
- 247 Service & License
- 384 News and Release
- 83 Security Advisories
- 29 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.2K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 83 About Community
- 71 Security Highlight
