VPN drops; reconnects; cannot ping until power cycle

Discussion in 'Networking Issues' started by wthess, Oct 21, 2008.


What is Your Experience With Linksys VPN Solutions?

  1. Linksys is a low end piece of junk

    1 vote(s)
  2. I have had good days and bad days

    0 vote(s)
  3. I rarely have problems with my VPN connection

    0 vote(s)
  1. wthess

    wthess Addicted to LI Member

    Ok, here's one for ya.

    First, my config:
    Shrew software client to BEFVP41 v2 (1.01.04)
    Windows Vista 64 Bit

    VPN router config:

    Local security
    Remote: any
    Gateway: any
    pfs on
    3600 secs
    Phase 1: 3DES, SHA, 1024 bit
    Phase 2: 3DES, SHA, 1024 bit
    Anti-replay enabled
    Netbios passthrough enabled
    Keep alive enabled

    Here's the issue. I'm able to connect ok and ping, and rdc, etc without problems. If connection drops, I successfully reconnect tunnel according to router logs. However, cannot ping, rdc, etc. Only solution is to drive 45 miles, unplug router, and plug back in.

    I've searched the net endlessly and the only solutions are "disable firewalls", which are obviously already disabled since it works after a power cycle. Gotta be something with the Linksys since a power recycle works.

    Any suggestions would be helpful.
  2. wthess

    wthess Addicted to LI Member

  3. greg6000

    greg6000 LI Guru Member

    I have experienced a similar issue with my RV082 VPN's Firmware 1.3.6

    I believe it is an issue with the key negotiations. If you check logs, does the drop occur when the VPN tunnel has negotiated a new key? This is similar to what was happening to me which happened to coincide with the 1-hour Phase 2 lifetime key cycles on a random basis.

    I have yet to find a solution. The drop for me can be minimized by increasing the key lifetimes to their maximums. The shorter the lifetimes, the more VPN drops as the more rolls of the Linksys VPN dice...
  4. wthess

    wthess Addicted to LI Member

    Yup, that's one of the issues. If I don't disconnect and reconnect before the key lifetime expires, this will happen. However, if I set the key lifetime too far out, and the tunnel goes down for whatever reason, I have to wait until the key expires before I can get back in. I usually set mine for one hour, that way if it drops, the most I'll be down is an hour.

    It's a catch 22 situation....key lifetime too short, you get dumped. Too long, and you can't get back in for a while if the connection goes down.

    I suppose you get what you pay for, though I don't like Linksys at all, but they are affordable. I just can't justify spending upwards of 500 bucks for a decent VPN router since I only use it 2 or 3 times a week, 2 or 3 hours at a time.

    I suppose I could set up a VPN server, but from what I understand Linksys only allows one connection at a time on the VPN passthrough and I have multiple computers which need to connect from time to time, some times at the same time, albeit rarely.

    Oh, and for those of you looking for a VPN client that works with Vista, even 64 bit editions, I have successfully configured a freeware client to work with Linksys. It's called ShrewSoft VPN Client. I am in the process of writing a "How To" on it and will upload it to Wiki as soon as life gives me the time. I'll post the link here.
  5. greg6000

    greg6000 LI Guru Member

  6. greg6000

    greg6000 LI Guru Member

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice