Solved

vpn between sonicwall and cisco asa

Posted on 2011-09-26
3
654 Views
Last Modified: 2012-05-12
Hello Everyone,
I am working on one end of a VPN. This is between 2 different organizations. We run alot of VPNs between differnet organizations, but one in particular seems to have alot of trouble. This one is with a Sonicwall.

It seems that there are times when the sonicwall thinks that the VPN is up and the Cisco doesn't think that it's up. This results in a situation where the Sonicwall can't pass traffic to the cisco. However, if I generate interesting traffic from the cisco end, the VPN comes up and then it works both ways.

So, this is my question:

Are there any "best practice" guides to building IPSEC VPNs between cisco and sonicwall?

Are there any specific features or funtions that don't work between these vendors?

Any other thoughts or recommendations?

Thanks,
Ben
0
Comment
Question by:Jack5Back
3 Comments
 
LVL 18

Accepted Solution

by:
jmeggers earned 250 total points
ID: 36700504
I don't know Sonicwall very well but maybe double-check timers to see if there's anything that can be done there.  Only other thing I can think of might be a script of some kind on the Cisco side to automatically generate traffic that will keep the tunnel up.
0
 
LVL 16

Assisted Solution

by:Syed_M_Usman
Syed_M_Usman earned 250 total points
ID: 36708813
Dear you can check lifetime, for sonicwall refer to atatched and for Cisco you can see in sh running. make sure both are same.
vpn-settings.png
0
 

Author Closing Comment

by:Jack5Back
ID: 37039534
Both Comments were helpful, but it was the dead peer detection on the sonicwall side that it turned out to be.
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you have an ASA5510 then this sort of thing would be better handled with a CSC Module, however on an ASA5505 thats not an option, and if you want to throw in a quick solution to stop your staff going to facebook during work time, then this is the…
From Cisco ASA version 8.3, the Network Address Translation (NAT) configuration has been completely redesigned and it may be helpful to have the syntax configuration for both at a glance. You may as well want to read official Cisco published AS…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…

808 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question