0

I have a tunnel between our remote school and our main complex, it occasionally stops transmitting data between the sites. I have been using the CLI on the local ASA 5516 to reset it with the vpn logoff all command. I have noticed that during a normal school day I have been doing this between 4 and 6 hours apart. I have tried to find a way to automate this, we are a small district and the amount of traffic is small and sporadic so I don't image that resetting the connection on a schedule would be noticed.

I haven't found anything yet, any suggestions? I do have a computer on the remote site running a ping command back to the main school and it hasn't helped.

3
  • 1
    Instead of automating the workaround I'd suggest looking into the general issue - event log? routing? key lifetime/exchange? firewall session/aging? NAT? VPN tunnels can stay up indefinitely. Commented Jan 28 at 18:42
  • 1
    This certainly seems to be an XY Problem. Solve the real problem. Commented Jan 28 at 18:47
  • I'm guessing your tunnel is not setup 'the right way' and has caused this problem. A properly configured tunnel should have dead peer detection and disconnect and recover automatically if it goes down due to an unreachable peer that comes back later. Your scenario most likely indicates one side or the other is behind NAT or something else interfering. If that is the case, you need to address that issue if possible or change the VPN configuration to account for it. Commented Jan 28 at 19:02

0

Start asking to get answers

Find the answer to your question by asking.

Ask question

Explore related questions

See similar questions with these tags.