Page 1 of 1
Remote IPSEC vpn remote peers still around after disconnect
Posted: Wed Sep 12, 2012 8:15 pm
by ocgltd
I have my L2TP/IPSEC vpn working now (with RB450g as concentrator/endpoint). I noticed that even after my remote client disconnects the VPN, the IPSEC tab in winbox still shows REMOTE PEERS as alive. I have DPD set to 120s (which I thought meant that if there is nothing on the ipsec channel for 120s remove the remote peer).
Is this normal? (How long should remote peers appear in the list after the VPN tunnel is disconnected)
Thanks
Re: Remote IPSEC vpn remote peers still around after disconn
Posted: Fri Sep 14, 2012 3:43 pm
by mrz
Currently L2TP and Ipsec Phase1 are not linked. So Ipsec doe snot know if client disconnects. We will think of some solution in the future versions.
Re: Remote IPSEC vpn remote peers still around after disconn
Posted: Sat Sep 15, 2012 3:37 am
by gsloop
MRZ:
This doesn't really answer the question at all.
Should we just expect a whole host of IPSec peers to stack up until the router gets restarted?
Is this at all related to the problem in this thread?
http://forum.mikrotik.com/viewtopic.php?f=2&t=65424
Are these problems known in other, older versions, or just in certain recent versions?
-Greg
Re: Remote IPSEC vpn remote peers still around after disconn
Posted: Tue Sep 18, 2012 7:03 pm
by gsloop
Bump