1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

RV042 Looses VPN connection every 4 minutes

Discussion in 'Cisco Small Business Routers and VPN Solutions' started by Adapto, Nov 20, 2006.

  1. Adapto

    Adapto Guest

    Please help
    I have two new RV042 routers updated with 1.3.7.10 firmware and one RV016. Two are on cable and troubled RV042 router is on DSL. Problem is the VPN tunnels on the RV042 continually drop and renegociate every 4 minutes. The other two routers are fine and renegociate every 60 minutes as set by the Phase2 SA Life Time of 3600 seconds. The tunnels reconnect in about 4 seconds but it causes my application using the tunnel to terminate. I have tried changing the MTU settings as suggested in the manual but none of those setting made a difference.

    Below is an example of 8 minutes of the log

    Nov 19 19:16:38 2006 VPN Log Informational Exchange is for an unknown (expired?) SA
    Nov 19 19:16:38 2006 VPN Log Initiating Main Mode
    Nov 19 19:16:38 2006 VPN Log [Tunnel Negotiation Info] >>> Initiator Send Main Mode 1st packet
    Nov 19 19:16:38 2006 VPN Log Informational Exchange is for an unknown (expired?) SA
    Nov 19 19:16:38 2006 VPN Log [Tunnel Negotiation Info] <<< Initiator Received Main Mode 2nd packet
    Nov 19 19:16:38 2006 VPN Log [Tunnel Negotiation Info] >>> Initiator send Main Mode 3rd packet
    Nov 19 19:16:39 2006 VPN Log [Tunnel Negotiation Info] <<< Initiator Received Main Mode 4th packet
    Nov 19 19:16:39 2006 VPN Log [Tunnel Negotiation Info] >>> Initiator Send Main Mode 5th packet
    Nov 19 19:16:39 2006 VPN Log [Tunnel Negotiation Info] >>> Initiator Receive Main Mode 6th packet
    Nov 19 19:16:39 2006 VPN Log Main mode peer ID is ID_IPV4_ADDR: '70.158.60.43'
    Nov 19 19:16:39 2006 VPN Log [Tunnel Negotiation Info] Main Mode Phase 1 SA Established
    Nov 19 19:16:39 2006 VPN Log [Tunnel Negotiation Info] Initiator Cookies = d7e8 ccb8 9c81 6023
    Nov 19 19:16:39 2006 VPN Log [Tunnel Negotiation Info] Responder Cookies = 68cf 75c 8012 b91
    Nov 19 19:16:39 2006 VPN Log initiating Quick Mode PSK+TUNNEL+PFS
    Nov 19 19:16:39 2006 VPN Log [Tunnel Negotiation Info] >>> Initiator send Quick Mode 1st packet
    Nov 19 19:16:39 2006 VPN Log [Tunnel Negotiation Info] <<< Initiator Received Quick Mode 2nd packet
    Nov 19 19:16:39 2006 VPN Log [Tunnel Negotiation Info] Inbound SPI value = 2b89361c
    Nov 19 19:16:39 2006 VPN Log [Tunnel Negotiation Info] Outbound SPI value = f8b95fda
    Nov 19 19:16:40 2006 VPN Log [Tunnel Negotiation Info] >>> Initiator Send Quick Mode 3rd packet
    Nov 19 19:16:40 2006 VPN Log [Tunnel Negotiation Info] Quick Mode Phase 2 SA Established, IPSec Tunnel Connected

    Nov 19 19:19:42 2006 VPN Log Informational Exchange is for an unknown (expired?) SA
    Nov 19 19:19:42 2006 VPN Log Initiating Main Mode
    Nov 19 19:19:42 2006 VPN Log [Tunnel Negotiation Info] >>> Initiator Send Main Mode 1st packet
    Nov 19 19:19:51 2006 VPN Log [Tunnel Negotiation Info] <<< Initiator Received Main Mode 2nd packet
    Nov 19 19:19:51 2006 VPN Log [Tunnel Negotiation Info] >>> Initiator send Main Mode 3rd packet
    Nov 19 19:19:51 2006 VPN Log Phase 1 message is part of an unknown exchange
    Nov 19 19:19:51 2006 VPN Log [Tunnel Negotiation Info] <<< Initiator Received Main Mode 4th packet
    Nov 19 19:19:51 2006 VPN Log [Tunnel Negotiation Info] >>> Initiator Send Main Mode 5th packet
    Nov 19 19:19:52 2006 VPN Log [Tunnel Negotiation Info] >>> Initiator Receive Main Mode 6th packet
    Nov 19 19:19:52 2006 VPN Log Main mode peer ID is ID_IPV4_ADDR: '70.158.60.43'
    Nov 19 19:19:52 2006 VPN Log [Tunnel Negotiation Info] Main Mode Phase 1 SA Established
    Nov 19 19:19:52 2006 VPN Log [Tunnel Negotiation Info] Initiator Cookies = 3ced ebc9 c9f8 134a
    Nov 19 19:19:52 2006 VPN Log [Tunnel Negotiation Info] Responder Cookies = 81f7 ffe0 4e71 4129
    Nov 19 19:19:52 2006 VPN Log initiating Quick Mode PSK+TUNNEL+PFS
    Nov 19 19:19:52 2006 VPN Log [Tunnel Negotiation Info] >>> Initiator send Quick Mode 1st packet
    Nov 19 19:19:52 2006 VPN Log [Tunnel Negotiation Info] <<< Initiator Received Quick Mode 2nd packet
    Nov 19 19:19:52 2006 VPN Log [Tunnel Negotiation Info] Inbound SPI value = 2b89361d
    Nov 19 19:19:53 2006 VPN Log [Tunnel Negotiation Info] Outbound SPI value = f8b95fdb
    Nov 19 19:19:53 2006 VPN Log [Tunnel Negotiation Info] >>> Initiator Send Quick Mode 3rd packet
    Nov 19 19:19:53 2006 VPN Log [Tunnel Negotiation Info] Quick Mode Phase 2 SA Established, IPSec Tunnel Connected
    Nov 19 19:20:02 2006 VPN Log Phase 1 message is part of an unknown exchange

    end of log
     
  2. Toxic

    Toxic Administrator Staff Member

    Adapto

    Could you please check if your modem is configured to hand out dhcp lease time equal to 5 minutes? If so, a fix would be to increase the lease time to 1 day. RV will reconnect the tunnel every time the dhcp lease time expires.
     

Share This Page