I have a site-to-site VPN setup between two locations. My firewall is a Cisco ASA and theirs is a CheckPoint. According to my interface, the VPN tunnel is always up. However, I get calls from the remote location saying they cannot connect and receive the error message "Unable to connect to 192.168.X.X on port 12002. (78) Connection timed out" where the 192.168 number is our internal host IP. The temporary solution to this is to logout the tunnel on my side and then send a ping to their host. Then the tunnel comes back up and they can start sending data again. My question is, how can I prevent myself from having to manually logout and send a ping to restart the tunnel all the time? I get about 5 calls a day from them every day for the past couple weeks. Please help.
We are running SUSE and they have AIX.
Start Free Trial
