DSL VPN using Cisco Pix501 to Sonicwall 3060

I have a remote location that has a dsl connection and a cisco pix501 firewall that I use to create a site-to-site VPN to our corporate office where we use a SonicWall 3060 to handle the remote vpn connections.

For the last two years, things have been working flawlessly. Then, on Sunday things started going weird and my connection is up and down pretty regularly about 1 min apart.

So...we changed out the dsl modem and the results were exactly the same.
We got the isp involved and they swore up and down their signal was solid.
I drive over to the remote location and swap the cisco pix501 for a cisco asa 5505 and the results are still the same.

The isp doesn't allow ping so when I connected the machine directly to the modem and bypassed the pix501 router, there wasn't any way I could really tell if the signal was dropping. I tried watching some youtube videos but it didn't seem like the signal was dropped.

Even when I put the router back in the mix and went to youtube, it didn't seem like the signal dropped.

But as soon as I ping continuously a machine on my corporate network, then I get replies for 56 seconds and Request Timed Out for 56 seconds.

I'm running out of ideas. Can anybody think of something I should try. All of my locations are set up exactly the same and none other are having this issue.

I submitted a question like this last night (or so I thought) but my account doesn't show it's in the system so hopefully I haven't duplicated the question.
RidcoDoITAsked:
Who is Participating?

[Webinar] Streamline your web hosting managementRegister Today

x
 
RidcoDoITConnect With a Mentor Author Commented:
The isp decided they would send a tech out to look at it....wouldn't you know 13 seconds later they had it working properly. Evidently it was a bad line....to make matters worse we asked them if they would send a tech out to look at it, their response was "what would they do?".Frustrating!!!
0
 
leibinusaCommented:
setup debug on ASA "debug crypto isakmp" "debug crypto ipsec" " debug crypto engine"  and post the output here.
0
 
RidcoDoITAuthor Commented:
I would do that, but I put the Pix501 back in place so we didn't need to charge the remote location for a new router in these economic times.
0
All Courses

From novice to tech pro — start learning today.