I started this topic.

I hope I'm not wrong, but it seems that the problem is gone. I have 29 days uptime without ipsec problems.

I was upgrading often and some of the fixes in the RouterOS did it.

Small update: We did some upgrades. The router is running 6.23 and one of the ipsec endpoints is now using libreswan instead of racoon.

Unfortunately it did not help. I had to reboot this morning. The uptime was 2w4d but there was no significant traffic during Xmas and new year holliday time.

We have two Internet connections. I have reconfigured one of the IPsec tunnels to other provider's link. I will wait what happens. If the problem is triggerred by a link outage, I will get 2 IPsec tunnels unusable instead of all 3. It did break down again few days ago. All IPsec's were down no matt...

The SiteA logs have(note I have edited them and changed the IPs and spi values etc): 2014.09.30-12:46:26 <yy.yy.yy.yy>: <30>Sep 30 12:46:26 racoon: [218.214.147.172] INFO: DPD: remote (ISAKMP-SA spi=0d35yyyyye0b9d5b0:1cb0yyyy46cb1) seems to be dead. ..... Thank you for your note. I do not see anyth...

IPsec down again. I think I will write an automatic reboot script.

It looks to me like a RouterOS issue, but I got no "me too" replies. If there is anybody reading this and having multiple IPsec tunnels configured, I would appreciate a short note.

It took 8 days this time. I tried it again and I have to repeat myself that none of these helps: /ip ipsec remote-peers kill-connections /ip ipsec installed-sa flush sa-type=all Even if combined with a similar action on the remote site, it does not help. All that happens is that new phase1 and phase...

When removing sas it has to be done on both sides simultaneously. This is one of the things I have tried. It did not help. OTOH, If I reboot only the router, the problem is gone. No action on the remote side necessary. That's why I must disagree in this particular case. The synchronised time is rea...

Check by netwatch if tunnel works. When it stops responding, remove SAs. It will link again. As I wrote, if I remove SAs, new SAs will be installed, but the connections remain unusable. It happens to all connections in the same time. I guess there is nothing wrong with individual SAs, individual pe...

I have a router with 3 IPsec tunnels configured. Normally everything works as expected, but after few days all 3 tunnels stop at the same time. The only way I can correct the situation is to reboot the router. After the reboot all 3 tunnels are fully functional again. I can't find any reason for thi...