Am running Sophos UTM ver 9.705-3 and have an IPsec site to site VPN with Sonicwall TZ300 (which is set to "initiate connection") that works well until I reboot the Sophos.
After rebooting the Sophos, I've watched the sonicwall keep retrying to reconnect for well over 5 mins with no answer back. At the sophos end, the VPN live log only shows the following entries and won't budge until I do something to the VPN, e.g. toggle on/off, change a setting, etc. then it reconnects no problem:
2021:02:20-11:58:48 lyneutm pluto[5866]: adding interface br0/br0 192.168.2.2:500
2021:02:20-11:58:48 lyneutm pluto[5866]: adding interface br0/br0 192.168.2.2:4500
2021:02:20-11:58:48 lyneutm pluto[5866]: adding interface lo/lo 127.0.0.1:500
2021:02:20-11:58:48 lyneutm pluto[5866]: adding interface lo/lo 127.0.0.1:4500
2021:02:20-11:58:48 lyneutm pluto[5866]: adding interface lo/lo ::1:500
2021:02:20-11:58:48 lyneutm pluto[5866]: loading secrets from "/etc/ipsec.secrets"
2021:02:20-11:58:48 lyneutm pluto[5866]: loaded PSK secret for <local FQDN> < remote FQDN>
2021:02:20-11:58:48 lyneutm pluto[5866]: listening for IKE messages
2021:02:20-11:58:48 lyneutm pluto[5866]: added connection description "S_JT VPN"
2021:02:20-11:58:48 lyneutm pluto[5866]: "S_JT VPN": we have no ipsecN interface for either end of this connection
(I've inserted the <local FQDN> and <remote FQDN> to replace the actual values.)
I've tried with Dead Peer Connection both on and off with same result.
Is there a known issue with IPSec VPN restarts at reboot? Is there something I may have configured wrong?
Any info would be appreciated.
This thread was automatically locked due to age.