OPNsense Forum

English Forums => General Discussion => Topic started by: Ric878 on June 30, 2018, 11:19:28 pm

Title: [Solved] IPSec Not Staying Alive
Post by: Ric878 on June 30, 2018, 11:19:28 pm

Hi,

I've setup an IPSec VPN point to point connection between three sites in a hub/spoke model. So far, I have everything setup and can contact clients at any of the three sites from any other site. My problem is that I can't manage to keep the connections alive. As I am still testing there is no active traffic going across the IPSec tunnels unless I'm actually actively doing my testing. When I step away and come back after a few hours, all the tunnels are down and I have to manually bring them back up.

Question is, how do I keep them active and how do I have them auto-connect in the event they go down? Once I solve this, my setup is ready to go.

Thanks,
Ric

Title: Re: IPSec Not Staying Alive
Post by: Ric878 on July 02, 2018, 08:20:14 am

I may have figured it out. Looks like I had missmatched PFS key groups in my phase two settings. I checked and updated them to match and the link has stayed up without issue for 12 hours.

Sent from my SM-G965U using Tapatalk