Solved

Firebox SOHO 6tc dropping VPN

Posted on 2004-10-06
6
466 Views
Last Modified: 2010-04-08
I have a pair of Firebox Soho 6tc's located in different places in the country VPNed with a few AxxisAC300 firewalls.  For some reason, the VPN tunnel between here (Axxis) and one of the Soho 6tc's keeps dropping over and over, forcing me to manually disable the VPN setting in my firewall here and re-enable it to rebuild the VPN tunnel.  What's really wierd is the link between that Soho 6tc and A DIFFERENT Axxis (in another location) never drops.  It's the same brand/model device as here.  A temporary solution to route through that Axxis box, so now the users behind the Soho 6tc are being routed through an extra VPN hop just to get to here.  Since an exchange server is located here I have no doubts it will negatively impact performance, but I can't think of another solution.  All firewalls have the latest firmware and all are configured correctly.  The VPN keeps dying.  Eventually the plan is to replace all Axxis firewalls with Fireboxes (the one here will be replaced with a Firebox x700) so I'm sure Firebox -- Firebox VPN will be very stable.........but until then I need a solution that will save me from having to rebuild the VPN tunnel almost every day (sometimes several times per day) without having to rely on a multihop VPN schema.

Lots of points so go for it :)
0
Comment
Question by:aaron240
  • 2
  • 2
6 Comments
 
LVL 2

Expert Comment

by:fendermb4
ID: 12370947
Are the VPN's in aggressive mode? Are they all configured the same?  Are you using IP addressing or host names for peer addresses?  Does each device only have 1 tunnel?

What are the various provider types (DSL, serial?)
0
 
LVL 2

Expert Comment

by:fendermb4
ID: 12504682
Any input on this?
0
 

Author Comment

by:aaron240
ID: 12586527
Thanks for the feedback fendermb4 but the solution was not readily apparent so we just migrated to the new Firebox. So far so good.
0
 

Author Comment

by:aaron240
ID: 12796304
Solved. Question can be closed.
0
 

Accepted Solution

by:
CetusMOD earned 0 total points
ID: 15934945
PAQed with points refunded (500)

CetusMOD
Community Support Moderator
0

Featured Post

What Is Threat Intelligence?

Threat intelligence is often discussed, but rarely understood. Starting with a precise definition, along with clear business goals, is essential.

Join & Write a Comment

Do you have a windows based Checkpoint SmartCenter for centralized Checkpoint management?  Have you ever backed up the firewall policy residing on the SmartCenter?  If you have then you know the hassles of connecting to the server, doing an upgrade_…
This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
This demo shows you how to set up the containerized NetScaler CPX with NetScaler Management and Analytics System in a non-routable Mesos/Marathon environment for use with Micro-Services applications.

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now