Ever since we upgraded our Contivity Box from 4_05.040 to 04_06.222, we have been experiencing a lot of problems with branch office connections being dropped. I've done a little research and given the errors that we get in our log, invalid cookie, etc, I'm pretty sure this is the result of a problem with SA certificates. For some reason, the SA doesn't like the certificates that were agreed upon. The result is our branch offices are losing connections with us. It seems to happen around the same time of the day for different branch offices. What is wierd is that for some offices, it happens at the end of the day. So at one point, the SAs must agree upon something because the connection is up for almost the entire day. Then, the connection is lost due to a IPSEC related issue.
I'm a helpdesk tech trying to assist our networking department with this issue (and get a better understanding of networking security for my own education/advancement
, so if somebody could point me in the direction of some good links that describe the SA process (phase 1, 2, etc) and in particular where SA certificates and agreement upon them play into the whole equation, I would really appreciate it.
Thanks.
I'm a helpdesk tech trying to assist our networking department with this issue (and get a better understanding of networking security for my own education/advancement
, so if somebody could point me in the direction of some good links that describe the SA process (phase 1, 2, etc) and in particular where SA certificates and agreement upon them play into the whole equation, I would really appreciate it.Thanks.