Hello, we have 2 IPSec IKEv2 tunnels configured in RUT241 (running RUT2M_R_00.07.17.1). The tunnels are working fine, but after a week, the RUT is starting to propose different encryption algorithms and PSK. As an example here we have only 1 proposal
But when tring to connect RUT is coming with 3 different proposal
and, most problematic, the PSK is wrong
Lifetime is configured to 86400s, so 1 day.
I have to delete and recreate the tunnels to connect again.
Is it a known issue?
Hello,
Thank you for reaching out. Your request is currently under review and analysis. Once the evaluation is complete, I will get back to you with an update and further information, findings, or suggestions.
In the meantime, could you check whether the issue persists when Flush conntrack is enabled under the Advanced settings tab?
Thank you for your patience.
Best regards,
Hello, thank you for your reply. What’s the purpose of the “flush conntrack” command?
However we applied the option
Hello,
Thank you for your patience.
The Flush conntrack is used when an IPsec tunnel connection is established, it clears the connection tracking table. This ensures that any existing sessions are reset so traffic can flow properly through the newly established tunnel.
Could you please confirm whether the initial issue has already been resolved or if the proposal settings still change every week and further assistance is required?
Best regards,
Hello, the issue seems solved after applying “Flush conntrack”
Thanks
This topic was automatically closed 2 days after the last reply. New replies are no longer allowed.
