We are running Astaro Security Linux 5.100. With Microsoft Windows XP VPN clients we can successfully connect using L2TP over IPSec with X.509 certificates. But the L2TP VPN connections drop unless we maintain a ping -t from the client machine. I suspect this is related to keep_alive=60 in /var/chroot-ipsec/etc/ipsec.conf and seen in root 12895 1361 0 Dec15 ? 00:00:23 /usr/lib/ipsec/pluto --nofork --debug-none --nocrsend --nat_traversal --keep_alive 60. For testing the L2TP VPN is opened then left inactive. It might also be an allow idle time or time out setting. NAT-T appears to be working. Please advise. Thanks.
This thread was automatically locked due to age.