Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 3 replies
  • Subscribers 26 subscribers
  • Views 12361 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

IPsec tunnel constant rekey

ZaneDonaldson

All,

 

I have one particular tunnel that is constantly showing rekeys in the log viewer.

 

My main location is an XG210, remote location is an XG85W.

 

The XG210 is also connected to an SonicWALL but that connection is not showing constant rekeys in the logs.

 

Here is the config to the problematic site:

 



This thread was automatically locked due to age.
Parents Reply Children
  • 0 in reply to lferrara

    Hey Luk,

     

    after speaking with Sophos tech support, I tried that along with making sure the rekey time on phase 1 and 2 don't match.  we tweaked a few other things, but it hasn't done anything to stop this particular tunnel from rebuilding every two minutes exactly.

     

    One more thing I noticed: on the remote side, the log viewer is showing an entry that says the following:

    packet from 24.xxx.xxx.xxx:500: NAT-T :No NAT device detected between Local Server and Remote Server

     

    this doesn't show up on the logs for the xg210 which is our main location.  I verified that both sides of the tunnel have NAT Traversal turned off.