Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 8 replies
  • Answers 1 answer
  • Subscribers 30 subscribers
  • Views 7474 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

RED tunnel can't reconnect automatically

ShunzeLee

Dear All,
Our customer's branch is in China.
China block the IPsec VPN to other world, so we build the site to site vpn with RED tunnel between head and branch office.

The RED protocol works great.
But the RED tunnel will not reconnect automatically when the connection failed.
We only can restart the connection manually...

Any suggestion?



This thread was automatically locked due to age.
Parents
  • 0

    Can you tell us, which site causes this issue? XG or RED? 

    Do you see the RED trying to connect to the XG and failing or is there simply "nothing" in the RED log on XG? 

    Did you perform a dump on Port 3410 and Port 3400 while this issue occurs? 

  • 0 in reply to LuCar Toni

    Two sites use XG appliance both.

    HeadOffice is XG210 (SFOS 16.05.8 MR-8),

    BranchOffice is XG115 (SFOS 17.1.3 MR-3).

     

    When the RED connection failed, the connect status still show "Uplink IP: XXX.XXX.XXX.XXX" on HeadOffice's XG.

    I need to stop the RED, and start it again to make the connection work really.

    Any suggestion?

     

  • 0 in reply to ShunzeLee

    found this in a KB 

    "

    If you see the tunnel constantly going up and down you may need to disable hardware acceleration.

    Logon to the console of the XG and issue the following commands.

    • console> system firewall-acceleration show
    This command will show whether or not hardware acceleration is enabled.
    • console> system firewall-acceleration disable
    This command disables the hardware acceleration and should stop the RED tunnel from disconnecting

    "

     

     

    KB: https://community.sophos.com/kb/en-us/126454

Reply
  • 0 in reply to ShunzeLee

    found this in a KB 

    "

    If you see the tunnel constantly going up and down you may need to disable hardware acceleration.

    Logon to the console of the XG and issue the following commands.

    • console> system firewall-acceleration show
    This command will show whether or not hardware acceleration is enabled.
    • console> system firewall-acceleration disable
    This command disables the hardware acceleration and should stop the RED tunnel from disconnecting

    "

     

     

    KB: https://community.sophos.com/kb/en-us/126454

Children