bloggerlpo.blogg.se - Check point 2200 vpn troubleshooting ike rekey

Confirm that there's constant bidirectional traffic between your local network and your virtual private cloud (VPC).

If you're experiencing idle timeouts that are caused by low traffic on a VPN tunnel, then check the following:

It doesn't have internet transit issues.

It isn't rate limiting DPD messages because IPS features are turned on in the firewall.

It isn't too busy to respond to DPD messages from AWS peers.

It's configured to receive and respond to DPD messages.If your customer gateway device has DPD turned on, then be sure that the following are true: If a VPN peer doesn't respond to three successive DPDs, then the peer is considered dead, and the tunnel is closed. A policy-based VPN connection on the customer gateway device is causing intermittent connectivity issues.Idle timeouts due to low traffic on a VPN tunnel or vendor-specific customer gateway configuration issues.Problems with Internet Protocol Security (IPsec) dead peer detection (DPD) monitoring.Common reasons for AWS VPN tunnel inactivity or instability on a customer gateway device include the following: