[vpn-help] Juniper SRX Junos 10.4 // Tunnel goes down // Deed Peer Detection problem?

Strion strion at gmail.com
Fri Mar 25 03:20:51 CDT 2011


Hi Team,

i am trying to configure Shrew to work with a Juniper SRX running
latest release of Junos (10.4). I succeeded in configure them, both
the SRX device and a Windows XP and 7 client running the latest stable
version of Shrew (2.1.7)

Going though the Shrew's logs i can see the following message:
11/03/23 15:02:46 ii : DPD ARE-YOU-THERE sequence 0604fb10 requested
11/03/23 15:02:47 !! : tunnel DPD timeout for peer X.X.X.X:500

Hence I can understand that due to DPD i.e dead peer detection, the
tunnel is coming down and that's strange because when I tested I
disable it.

If DPD is configured on Shrew, we will have to configure the same on
the SRX too, so we need to know one the following:

1) Why Shrew is sending dpd packets although its not configured? It
this possible?

2) Otherwise we can configure dpd on our router and give it a try. We
can set DPD on our router but we need to know what is the default DPD
seconds Shrew use since it needs to be the same on our side too.
Please could you give us this information?

Thank you in advance.

Have a nice day.

Strion



More information about the vpn-help mailing list