Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 2 replies
  • Subscribers 38 subscribers
  • Views 2297 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

IPSEC VPN Keep Disconnected After One Hour

Nik Fifi Sofia

Hi and good day,

I am still new to sophos XG. Currently we have setup IPsec VPN from our sophos XG135 to Watchguard (DRC Site). It keeps disconnected after one hour. We are using IKEv2 and our sophos firmware is using SFOS 17.5.13 MR-13. We have verified the configuration for both side but still the problem is not resolved. Is there any one facing this kind of problem and how to fix it?

Really appreciate your help!



This thread was automatically locked due to age.
Parents
  • 0

    Hell Nik,

    Thank you for contacting the Sophos Community!

    If you SSH to the XG, and press (5>3) to go to the advanced shell and  then type

    # cd /log

    And check for the strongswan.log and charon.log what information this logs provide you with when the tunnel goes down?

    Please copy and paste the output, additionally make sure one of the sites is set to initiate the connection and the other one is set to respond only, and that DPD is enabled.

    Regards,

     
    Emmanuel (EmmoSophos)
    Technical Team Lead, Global Community Support
    Sophos Support VideosProduct Documentation  |  @SophosSupport  | Sign up for SMS Alerts
    If a post solves your question use the 'Verify Answer' link.
Reply
  • 0

    Hell Nik,

    Thank you for contacting the Sophos Community!

    If you SSH to the XG, and press (5>3) to go to the advanced shell and  then type

    # cd /log

    And check for the strongswan.log and charon.log what information this logs provide you with when the tunnel goes down?

    Please copy and paste the output, additionally make sure one of the sites is set to initiate the connection and the other one is set to respond only, and that DPD is enabled.

    Regards,

     
    Emmanuel (EmmoSophos)
    Technical Team Lead, Global Community Support
    Sophos Support VideosProduct Documentation  |  @SophosSupport  | Sign up for SMS Alerts
    If a post solves your question use the 'Verify Answer' link.
Children
No Data
Unfiltered HTML