Hello everyone,
Forgive my novice knowledge on VPN. I have several remote offices connecting to my office via hardware VPN. I have several remote offices that drop the VPN connection and it will not auto renegotiate. Most of my branches work fine. But the problematic branches have a new version of the router (the previous version is discontinued).
Here is some information that might be helpful.
My office has a full T1 with a Symantec Security Gateway 5400 series.
The remote offices that work have a D-Link Di824VUP and either cable or DSL connections with static IP addressing. The D-Link handles everything at the remote office (PPPoE, static IP, VPN, etc.) These branches seem to work fine but the D-LInk is no longer made and when they fail for whatever reason (lightning, power surge, etc.) I have to replace them with the new version from D-Link (DIR-330).
The remote offices that don't work are using the DIR-330. Several issues are present. I can get the VPN tunnel to connect for a brief time but when it disconnects for whatever reason (IKE lifetime, connectivity issue with ISP) it will not automatically reconnect. I am using the latest firmware and have verified the settings for IPSec with the previous router. The only thing I cannot do is set teh IKE Lifetime to 900 seconds. It has to be 14400 or higher on the new D-LInk (the old D-LInk is set to 900 seconds). Additionally, the WAN port will not respond to a Ping when the VPN is connected on the new router. When the VPN drops the PPP0E on the D-LInk still says connected and the ISP support can see that I am connected, I just can't connect the VPN without disconnecting the PPPoE or power cycling the router. This issue is severly impacting productivity.
The DSL connections have their modems configured for bridge mode so they do nothing. The D-Link handles it all.
Any guidance would be greatly appreciated.
Forgive my novice knowledge on VPN. I have several remote offices connecting to my office via hardware VPN. I have several remote offices that drop the VPN connection and it will not auto renegotiate. Most of my branches work fine. But the problematic branches have a new version of the router (the previous version is discontinued).
Here is some information that might be helpful.
My office has a full T1 with a Symantec Security Gateway 5400 series.
The remote offices that work have a D-Link Di824VUP and either cable or DSL connections with static IP addressing. The D-Link handles everything at the remote office (PPPoE, static IP, VPN, etc.) These branches seem to work fine but the D-LInk is no longer made and when they fail for whatever reason (lightning, power surge, etc.) I have to replace them with the new version from D-Link (DIR-330).
The remote offices that don't work are using the DIR-330. Several issues are present. I can get the VPN tunnel to connect for a brief time but when it disconnects for whatever reason (IKE lifetime, connectivity issue with ISP) it will not automatically reconnect. I am using the latest firmware and have verified the settings for IPSec with the previous router. The only thing I cannot do is set teh IKE Lifetime to 900 seconds. It has to be 14400 or higher on the new D-LInk (the old D-LInk is set to 900 seconds). Additionally, the WAN port will not respond to a Ping when the VPN is connected on the new router. When the VPN drops the PPP0E on the D-LInk still says connected and the ISP support can see that I am connected, I just can't connect the VPN without disconnecting the PPPoE or power cycling the router. This issue is severly impacting productivity.
The DSL connections have their modems configured for bridge mode so they do nothing. The D-Link handles it all.
Any guidance would be greatly appreciated.