I'm having the same problem. In my investigation it seems to happen when the client renews the IKE lease (every 120 seconds). This only seems to effect remote control programs like Term Services and PC anywhere. They will completely loose connection to the remote host. E-mail clients an other applications seem to tolerate the lease renewal drops. You can get up to 10 dropped pings during this process.
I tried changing the client SA life (in seconds), phase one and two, to a much higher value (looks like the max is 28800 seconds (8 hours)). The GTA suggested value is 120 seconds. This made the lease much longer (visible in GBAdmin | System Activity | Active VPNs) and therefore reduced the number of times it had to be renewed (causing the network drop). There may be security implications of having longer leases though. Connection hi-jacking, etc. And this extended lease also consumes a license until it expires. Even if the client computer has been shut off. Paul Terhune SurfControl Inc. Scotts Valley, CA. 95005 831.431.1375 -----Original Message----- From: Joe Matuscak [mailto:[EMAIL PROTECTED]] Sent: Monday, February 04, 2002 10:17 AM To: Lui Guadagno Cc: '[EMAIL PROTECTED]' Subject: Re: [gb-users] remote VPN client problem On Mon, 4 Feb 2002, Lui Guadagno wrote: > I am experiencing problems with remote clients connecting to a GB1000, > version 3.2.3. The clients connect to the protected network without a > problem but after a few minutes I experience a loss of connectivity for > periods of up to 30 seconds before the connection resumes again. This is > very apparent when browsing an NT network as Windows Explorer freezes and > sometimes stops responding altogether. I have tried changing the timeout > settings of the VPN client but this makes no difference at all. Anyone had > the same problem or point me in the right direction.. Yup. I've seen the same thing since upgrading to the latest client version. A number of other folks here have mentioned seeing it. No particular hints as far as a workaround. You probably should call GTA's tech support and log a call. Joe Matuscak Rohrer Corporation 717 Seville Road Wadsworth, Ohio 44281 (330)335-1541 [EMAIL PROTECTED] --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] To subscribe to the digest version first unsubscribe, then e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
