This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sg330 site to site VPN ( SRX550) ping timeout every 10s

Hello guys. Having real headache here. Built a site to site vpn from Sg330 to SRX550 and the connection seem to drop every <10s. Ping timeout 3/4s and the connection is back and again it will timeout in 10s. This only happen when i added 10.8.52.0/22 subnet into the vpn remote networks.

I hv multiple subnets built into 1 site 2 site vpn.

10.8.83.0/24

10.8.56.0/24

10.8.52.0/22

The connection is fine w/o the .52 subnet in it. Hope someone able to shed so lights.

This thread was automatically locked due to age.

0 BAlfson over 6 years ago

Hi, Samuel, and welcome to the UTM Community!

Is DPD activated on both ends? When it is, show us the lines from the IPsec log including 40 lines before the interruption and 10 lines after.

Cheers - Bob

Sophos UTM Community Moderator
Sophos Certified Architect - UTM
Sophos Certified Engineer - XG
Gold Solution Partner since 2005

MediaSoft, Inc. USA
Cancel
Vote Up 0 Vote Down

Cancel
0 Samuel Ip over 6 years ago in reply to BAlfson

Hello Bob,

DPD is deactivated on both end. In the end i have to use 10.x.x.x/16 to make it work without timeout and have the firewall rules to restrict all connection except those i mention to passthru.
Cancel
Vote Up 0 Vote Down

Cancel