Solved

DSL VPN using Cisco Pix501 to Sonicwall 3060

Posted on 2009-04-10
3
263 Views
Last Modified: 2013-12-14
I have a remote location that has a dsl connection and a cisco pix501 firewall that I use to create a site-to-site VPN to our corporate office where we use a SonicWall 3060 to handle the remote vpn connections.

For the last two years, things have been working flawlessly. Then, on Sunday things started going weird and my connection is up and down pretty regularly about 1 min apart.

So...we changed out the dsl modem and the results were exactly the same.
We got the isp involved and they swore up and down their signal was solid.
I drive over to the remote location and swap the cisco pix501 for a cisco asa 5505 and the results are still the same.

The isp doesn't allow ping so when I connected the machine directly to the modem and bypassed the pix501 router, there wasn't any way I could really tell if the signal was dropping. I tried watching some youtube videos but it didn't seem like the signal was dropped.

Even when I put the router back in the mix and went to youtube, it didn't seem like the signal dropped.

But as soon as I ping continuously a machine on my corporate network, then I get replies for 56 seconds and Request Timed Out for 56 seconds.

I'm running out of ideas. Can anybody think of something I should try. All of my locations are set up exactly the same and none other are having this issue.

I submitted a question like this last night (or so I thought) but my account doesn't show it's in the system so hopefully I haven't duplicated the question.
0
Comment
Question by:RidcoDoIT
  • 2
3 Comments
 
LVL 4

Expert Comment

by:leibinusa
ID: 24115720
setup debug on ASA "debug crypto isakmp" "debug crypto ipsec" " debug crypto engine"  and post the output here.
0
 

Author Comment

by:RidcoDoIT
ID: 24115736
I would do that, but I put the Pix501 back in place so we didn't need to charge the remote location for a new router in these economic times.
0
 

Accepted Solution

by:
RidcoDoIT earned 0 total points
ID: 24118340
The isp decided they would send a tech out to look at it....wouldn't you know 13 seconds later they had it working properly. Evidently it was a bad line....to make matters worse we asked them if they would send a tech out to look at it, their response was "what would they do?".Frustrating!!!
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Cisco ASDM device NT domain question 4 45
DNS and NSLOOKUP 21 76
Cisco VPN client v5 migration to Anyconnect VPN? 8 40
Microsoft VPN Access - Routing and Remote Access 2 35
OpenVPN is a great open source VPN server that is capable of providing quick and easy VPN access to your network on the cheap.  By default the software is configured to allow open access to your network.  But what if you want to restrict users to on…
Creating an OSPF network that automatically (dynamically) reroutes network traffic over other connections to prevent network downtime.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…

825 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question