Manualshelf

Quick Reference Guide

ManualsBrandsNetgear ManualsNetworkingSRXN3205
141142143144145146147148149150
ProSafe Wireless-N VPN Firewall SRXN3205 Reference Manual
6-38 Virtual Private Networking Using IPsec
v1.0, January 2010
Configuring Keepalives
The keepalive feature maintains the IPSec SA by sending periodic ping requests to a host across
the tunnel and monitoring the replies. To configure the keepalive on a configured VPN policy,
follow these steps:
1. Select VPN > Policies from the main/submenu.
2. Click the VPN Policies tab, then click the edit button next to the desired VPN policy.
3. In the General section of the Edit VPN Policy screen, locate the keepalive configuration
settings, as shown in Figure 6-21.
4. Click the Ye s radio button to enable keepalive.
5. In the Ping IP Address boxes, enter an IP address on the remote LAN. This must be the
address of a host that can respond to ICMP ping requests.
6. Enter the Detection Period to set the time between ICMP ping requests. The default is 10
seconds.
7. In Reconnect after failure count, set the number of consecutive missed responses that will be
considered a tunnel connection failure. The default is 3 missed responses. When the VPN
firewall senses a tunnel connection failure, it forces a reestablishment of the tunnel.
8. Click Apply at the bottom of the screen.
Figure 6-21