|
Posted by Steven L Umbach on October 15, 2005, 11:06 am
Please log in for more thread options
I take it you used a ipsec tunneling policy and did not use Remote Access
configuration. If that is the case and you used default settings for ipsec
key lifetimes on the Windows 2003 Server it would not reset that often and I
believe the default for main mode is 480 minutes though even then it should
not cause a disconnect but another negotiation. By default auditing of logon
events should be enabled on the Windows 2003 Server and it may help to look
in the security log for IKE related events. I did a Google search and I
found the first link below that may help even though it is for Windows 2000.
The second link is a general search of the MS site. --- Steve
http://www.cisco.com/en/US/tech/tk583/tk372/technologies_configuration_example09186a00800b12b5.shtml
http://search.microsoft.com/search/results.aspx?view=en-us&st=a&na=81&qu=+windows+2003+ipsec+cisco&qp=&qa=&qn=&c=10&s=0
> Hi all,
> I have successfully set up an IPSec VPN between a Windows 2003 server and
> a two remote Cisco PIX firewalls. However, I have a problem where the
> session disconnects every 5 minutes and *appears* to rekey. I've looked
> at the IP Security Monitor statistics and it doesn't show any Rekeys, but
> it does show "Key Additions" and "Key Deletions" incrementing every five
> minutes. I do not have any rekey parameter settings configured on the
> Windows server that I can tell. Is there a key deletion setting
> misconfigured somewhere?
>
> Thanks in advance,
> evt
| 
XML Sitemap