Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

ISA 2004 Site Vpn Re-Connection Problem

Posted on 2006-12-01
4
Medium Priority
?
184 Views
Last Modified: 2013-11-16
Hi There,

I've got an Main office and a Site office.  Both are running Windows Server 2003 R2 and ISA 2004.  We've got a Demand Dial vpn site connect between the two sites.  My problem is the site office will go down once every so many hours and will never reconnect.  I'll reboot the site office isa server, and when it comes up, the connection will reconnect without a problem.  I think it has something to do with once the isa box gets disconnected it doesn't close the port or something like that.  Also, if the main office try's to reconnect after the site goes down, the main office connection will connect as a 'Remote Access Connection'  not a 'Network Interface' connection.

The error message I'm getting when we try to reconnect is:

An error occured during connection of the interface.
The modem (or other connecting device) has reported an error.

Any help would be great.

Thanks,

Steven.
0
Comment
Question by:mattamyhomes
  • 2
2 Comments
 
LVL 51

Accepted Solution

by:
Keith Alabaster earned 500 total points
ID: 18056536
What are the routers that are connecting the two sites together?
You say its a demand-dial, is this an ISDN-based connection between the sites? Are you charged by the amount of time the line is up?

In the ISA gui - monitoring - connection verifiers, you can place ntries here that 'check' the connectivity of a device/service periodically. If you were to check a device/service that was at the other end of the VPN, this would ensure that the line stayed up. On the assumption that you have configured the firewall policy rules to only allow 'required' or 'interesting' traffic to pass across the vpn then you will not be passing tons of traffic. You can do the same at both ends or just one if you wish.

Also, open the isa gui, select monitoring - logging - click on start query.
this is a realtime logging monitor. What do you see at the time you get the error message?

Yet again in the monitoring tab, select alerts. Any listed? Drill down the alerts and a more detailed message is displayed at the bottom of the screen.

Have you installed ALL of the ISA service packs, roll up patches and MS updates?
0
 
LVL 51

Expert Comment

by:Keith Alabaster
ID: 18195849
Did you need any further prompts/suggestions?
0

Featured Post

Vote for the Most Valuable Expert

It’s time to recognize experts that go above and beyond with helpful solutions and engagement on site. Choose from the top experts in the Hall of Fame or on the right rail of your favorite topic page. Look for the blue “Nominate” button on their profile to vote.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Do you have a windows based Checkpoint SmartCenter for centralized Checkpoint management?  Have you ever backed up the firewall policy residing on the SmartCenter?  If you have then you know the hassles of connecting to the server, doing an upgrade_…
To setup a SonicWALL for policy based routing to be used with the Websense Content Gateway there are several steps that need to be completed. Below is a rough guide for accomplishing this. One thing of note is this guide is intended to assist in the…
Integration Management Part 2
When cloud platforms entered the scene, users and companies jumped on board to take advantage of the many benefits, like the ability to work and connect with company information from various locations. What many didn't foresee was the increased risk…

824 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question