[vpn-help] WatchGuard XTM 505 and IPSec-VPN

Ryan B. Boulo ryan at nfmc.org
Fri Aug 9 06:58:33 CDT 2013


Tommy, did you upgrade the firewall OS?


-----Original Message-----
From: Kevin VPN [mailto:kvpn at live.com]
Sent: Thursday, August 08, 2013 11:12 PM
To: vpn-help at lists.shrew.net
Subject: Re: [vpn-help] WatchGuard XTM 505 and IPSec-VPN

On 08/02/2013 07:13 PM, Tommy Farnsworth wrote:
>
> I am sort of new to VPNs, but am learning.
>
> I have a WatchGuard XTM 505 with 11.6.3 firmware and Management
> software 11.6. I set up a Mobile VPN using IPSec. Clients are using
> the Shrewsoft VPN client.
>
> All of the clients connected fine and it seems to work with one major
> problem, they all get connected after an hour or so on connection.
> When this happens it causes a loss of work on their part and they have
> to reconnect.  Is there a way to keep the connection open longer?
>

Hi Tommy,

The first thing I look at when I see disconnects after a consistent amount of time is the Phase 1 and Phase 2 Key Life Times.  Make sure that the settings in the Shrew Site Configuration match exactly with what the VPN Gateway (the WatchGuard) is set to.  If they do not match, they will not renegotiate keys properly, resulting in disconnects.


_______________________________________________
vpn-help mailing list
vpn-help at lists.shrew.net
https://lists.shrew.net/mailman/listinfo/vpn-help

Confidentiality Statement:
As stated in North Florida Medical Centers, Inc (NFMC) Notice of Information Practices, to comply with the Privacy Rule in Title II of HIPAA, NFMC will maintain the privacy of patient’s health information, including implementing reasonable and appropriate physical, administrative, and technical safeguards to protect the information.  The attached information is CONFIDENTIAL and is protected under the Privacy Act of 1974.  It is intended for the use of the addressee(s) identified above.  This material must be destroyed appropriately when its use is no longer required.  If the reader of this message is not the intended recipient(s) or the employee or agent responsible for delivering the attached information to the intended recipient(s), the reader should notify NFMC immediately and return the original message to the address identified via U.S. Mail.  Please note that any dissemination, distribution or copying of this communication is strictly prohibited.



More information about the vpn-help mailing list