Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 11 replies
  • Subscribers 1 subscriber
  • Views 1447 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

ipsec tunnel only accessable from one site

HLW_admin
I set up an ipsec site-to-site vpn with rsa authentication: One site is an astaro 7.404, the other 7.403.
Following problem: The tunnel works but after some time it only seems to be working, because it is just possible to inititiate a connection from one site to the other - and it is allways the same site; after having done this it works fine for a while and then the same thing happens. 
I tested different authentications, different gw-type (initiate on both sites or initiate nd just answering) - can't find any solution.
Thank you for your help!


This thread was automatically locked due to age.
Parents
  • 0
    Hmmm...  On the IPsec 'Advanced' tab, if you have the box for 'NAT Traversal (NAT-T)' checked and 'keepalive' at 
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson
    NAT-Traversal is checkes and the interval is 60 seconds.
    But in the protocol we can see that nat-t is not used, and we
    can also see this because both systems can be reached by
    public ip-adresses directly...
Reply Children
No Data
Cookie Information Banner