This is a cryptographically signed message in MIME format.

--===============0772034501==
Content-Type: multipart/signed; protocol="application/x-pkcs7-signature";
micalg=sha1; boundary="------------ms020005050508030007000008"

This is a cryptographically signed message in MIME format.

--------------ms020005050508030007000008
Content-Type: multipart/mixed; boundary="------------000401040003000309010705"

This is a multi-part message in MIME format.
--------------000401040003000309010705
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit

possible -

my answer would have been terse:

"logging ike at debug level on the cisco would tell you a lot more than
anyone on this list could"

Scott Pinzon wrote:
> Just about everyone on this list is more qualified to answer than I am,
> but since I haven't seen any other replies, I'll take a stab at answering.
>
> I don't know about the Pix specifically, but many firewalls have a Phase
> 2 setting that forces key expiration after a specified period of time.
> This is to make sure the tunnel is not sitting idle for long periods,
> susceptible to being abused. The symptoms you describe would be
> consistent with one end of the VPN tunnel having a different key
> expiration timing than the other end of the tunnel. It could be that one
> end of the tunnel is forcing expiration, then the two ends
> auto-negotiate a new tunnel... which is why the tunnel is down for five
> or ten minutes, then comes back.
>
> Long story short, I'd try checking for compatible "force key expiration"
> settings on both ends of the tunnel.
> Hope this helps!
>
> Scott Pinzon, CISSP
> WatchGuard Technologies
>
> ------------------------------------------------------------------------
> *From:* firewall-wizards-bounces@listserv.icsalabs.com
> [mailto:firewall-wizards-bounces@listserv.icsalabs.com] *On Behalf
> Of *Henderson, Bernadette
> *Sent:* Monday, November 20, 2006 1:00 PM
> *To:* firewall-wizards@listserv.icsalabs.com
> *Subject:* [fw-wiz] VPN question
>
>
>
> I have a home grown network in my office for clients to use.(Outside
> of my work network) The problem is that the amount of persons using
> it is growing every time they come to my office for work for about a
> month straight then leave for 6 months. All of them want to connect
> back to their home office using the microsoft built in vpn client.
> They also now use a Pix firewall which I have no knowledge of but
> they do have a consultant who runs it for them. There are about ten
> users.
>
> The dilemma I have is that about every 18 hours they all getting
> booted out of their vpn and say they cant get onto the internet. It
> lasts about 5 to ten minutes and about the time I get on the road to
> come in to see whats wrong, they are back up and running again. They
> are working night and day weekends too...
>
> In my office I have a T1 going to a cisco router, to a linksys
> router for nat and then to and hp switch then piped over to the port
> in the room to netgear switchboxes at the conference room tables.
>
> My network guys say the T1 is fine etc etc.. I cant really see much
> of anything from the linksys. What should I be looking for to
> uncover what is booting them out and back up again so quickly? I
> called their tech guy to look at the firewall log and am waiting for
> feedback.
>
> Thanks in advance
>
>
>
> Bernadette
>
>
>
>
>
> This e-mail is from Dechert LLP, a law firm, and may contain information that is confidential or privileged. If you are not the intended recipient, do not read, copy or distribute the e-mail or any attachments. Instead, please notify the sender and delete the e-mail and any attachments. Thank you.
>
>
> ------------------------------------------------------------------------
>
> _______________________________________________
> firewall-wizards mailing list
> firewall-wizards@listserv.icsalabs.com
> https://listserv.icsalabs.com/mailma...rewall-wizards


--------------000401040003000309010705
Content-Type: text/x-vcard; charset=utf-8;
name="dave.vcf"
Content-Transfer-Encoding: 7bit
Content-Disposition: attachment;
filename="dave.vcf"

begin:vcard
fnavid Piscitello
n:Piscitello;David
adr;dom:;;3 Myrtle Bank Lane;Hilton Head;SC;29926
email;internet:dave@corecom.com
x-mozilla-html:FALSE
url:http://hhi.corecom.com/weblogindex.htm
version:2.1
end:vcard


--------------000401040003000309010705--

--------------ms020005050508030007000008
Content-Type: application/x-pkcs7-signature; name="smime.p7s"
Content-Transfer-Encoding: base64
Content-Disposition: attachment; filename="smime.p7s"
Content-Description: S/MIME Cryptographic Signature

MIAGCSqGSIb3DQEHAqCAMIACAQExCzAJBgUrDgMCGgUAMIAGCS qGSIb3DQEHAQAAoIII/zCC
AtowggJDoAMCAQICEF0LYBAiw6o0EV6S7w7ELuowDQYJKoZIhv cNAQEFBQAwYjELMAkGA1UE
BhMCWkExJTAjBgNVBAoTHFRoYXd0ZSBDb25zdWx0aW5nIChQdH kpIEx0ZC4xLDAqBgNVBAMT
I1RoYXd0ZSBQZXJzb25hbCBGcmVlbWFpbCBJc3N1aW5nIENBMB 4XDTA2MDgwNzE2NDI1MFoX
DTA3MDgwNzE2NDI1MFowQjEfMB0GA1UEAxMWVGhhd3RlIEZyZW VtYWlsIE1lbWJlcjEfMB0G
CSqGSIb3DQEJARYQZGF2ZUBjb3JlY29tLmNvbTCCASIwDQYJKo ZIhvcNAQEBBQADggEPADCC
AQoCggEBAK00H3a4L9AWWyB6EeuQCuV6a5XECMgTsEvx/5NgXXlokyB9al+etDSm0IdI5Rhc
8ItOtfp0HSV2SkqDrLY+qtJ60wBn73KjpPqthpma4PV9H6OXKI 5RzLk7ePn9aOxONihd9JAD
XDkNTzTkuaogmgOY1enGsafG26Rc+G+z4QusPZelXqaSKwB4+e 3QZTKkPX+UGC0rVHNBOh35
3LY+B6wE3p5rlhDtOeQ9SgDAqR9XXX5bV8wD6ZAaT9DxAU2Jrr RTFSBvhO7zr9z9OAG1tJmP
WbJbNB2lM9EAPU0iQvB82Iz1cXtizYvrdf5H/eznFsRaxlELuZuYbBHw38DCwPkCAwEAAaMt
MCswGwYDVR0RBBQwEoEQZGF2ZUBjb3JlY29tLmNvbTAMBgNVHR MBAf8EAjAAMA0GCSqGSIb3
DQEBBQUAA4GBAG4dtrniVWF3ntg2aYaCCZX/oOOTZf8aXtB6bP7WqiGuPxbv019+Ijbd+czp
dDavh9ovWtYM2++xK9d5Jp+NrfHamZCo4V12WLM/YnTPedcgMLpf8GNdW951A7Rnc2D74iNC
NChO6/qJIhLQCm/iGiWg19J8R0WvIBPBJfzANzQvMIIC2jCCAkOgAwIBAgIQXQtgE CLDqjQR
XpLvDsQu6jANBgkqhkiG9w0BAQUFADBiMQswCQYDVQQGEwJaQT ElMCMGA1UEChMcVGhhd3Rl
IENvbnN1bHRpbmcgKFB0eSkgTHRkLjEsMCoGA1UEAxMjVGhhd3 RlIFBlcnNvbmFsIEZyZWVt
YWlsIElzc3VpbmcgQ0EwHhcNMDYwODA3MTY0MjUwWhcNMDcwOD A3MTY0MjUwWjBCMR8wHQYD
VQQDExZUaGF3dGUgRnJlZW1haWwgTWVtYmVyMR8wHQYJKoZIhv cNAQkBFhBkYXZlQGNvcmVj
b20uY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQ EArTQfdrgv0BZbIHoR65AK
5XprlcQIyBOwS/H/k2BdeWiTIH1qX560NKbQh0jlGFzwi061+nQdJXZKSoOstj6q0n rTAGfv
cqOk+q2GmZrg9X0fo5cojlHMuTt4+f1o7E42KF30kANcOQ1PNO S5qiCaA5jV6caxp8bbpFz4
b7PhC6w9l6VeppIrAHj57dBlMqQ9f5QYLStUc0E6Hfnctj4HrA TenmuWEO055D1KAMCpH1dd
fltXzAPpkBpP0PEBTYmutFMVIG+E7vOv3P04AbW0mY9Zsls0Ha Uz0QA9TSJC8HzYjPVxe2LN
i+t1/kf97OcWxFrGUQu5m5hsEfDfwMLA+QIDAQABoy0wKzAbBgNVHRE EFDASgRBkYXZlQGNv
cmVjb20uY29tMAwGA1UdEwEB/wQCMAAwDQYJKoZIhvcNAQEFBQADgYEAbh22ueJVYXee2DZp
hoIJlf+g45Nl/xpe0Hps/taqIa4/Fu/TX34iNt35zOl0Nq+H2i9a1gzb77Er13kmn42t8dqZ
kKjhXXZYsz9idM951yAwul/wY11b3nUDtGdzYPviI0I0KE7r+okiEtAKb+IaJaDX0nxHRa8g
E8El/MA3NC8wggM/MIICqKADAgECAgENMA0GCSqGSIb3DQEBBQUAMIHRMQswCQYDVQ QGEwJa
QTEVMBMGA1UECBMMV2VzdGVybiBDYXBlMRIwEAYDVQQHEwlDYX BlIFRvd24xGjAYBgNVBAoT
EVRoYXd0ZSBDb25zdWx0aW5nMSgwJgYDVQQLEx9DZXJ0aWZpY2 F0aW9uIFNlcnZpY2VzIERp
dmlzaW9uMSQwIgYDVQQDExtUaGF3dGUgUGVyc29uYWwgRnJlZW 1haWwgQ0ExKzApBgkqhkiG
9w0BCQEWHHBlcnNvbmFsLWZyZWVtYWlsQHRoYXd0ZS5jb20wHh cNMDMwNzE3MDAwMDAwWhcN
MTMwNzE2MjM1OTU5WjBiMQswCQYDVQQGEwJaQTElMCMGA1UECh McVGhhd3RlIENvbnN1bHRp
bmcgKFB0eSkgTHRkLjEsMCoGA1UEAxMjVGhhd3RlIFBlcnNvbm FsIEZyZWVtYWlsIElzc3Vp
bmcgQ0EwgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJAoGBAMSmPF VzVftOucqZWh5owHUEcJ3f
6f+jHuy9zfVb8hp2vX8MOmHyv1HOAdTlUAow1wJjWiyJFXCO3c nwK4Vaqj9xVsuvPAsH5/Ef
kTYkKhPPK9Xzgnc9A74r/rsYPge/QIACZNenprufZdHFKlSFD0gEf6e20TxhBEAeZBlyYLf7
AgMBAAGjgZQwgZEwEgYDVR0TAQH/BAgwBgEB/wIBADBDBgNVHR8EPDA6MDigNqA0hjJodHRw
Oi8vY3JsLnRoYXd0ZS5jb20vVGhhd3RlUGVyc29uYWxGcmVlbW FpbENBLmNybDALBgNVHQ8E
BAMCAQYwKQYDVR0RBCIwIKQeMBwxGjAYBgNVBAMTEVByaXZhdG VMYWJlbDItMTM4MA0GCSqG
SIb3DQEBBQUAA4GBAEiM0VCD6gsuzA2jZqxnD3+vrL7CF6FDlp Sdf0whuPg2H6otnzYvwPQc
UCCTcDz9reFhYsPZOhl+hLGZGwDFGguCdJ4lUJRix9sncVcljd 2pnDmOjCBPZV+V2vf3h9bG
CE6u9uo05RAaWzVNd+NWIXiC3CEZNd4ksdMdRv9dX2VPMYIDZD CCA2ACAQEwdjBiMQswCQYD
VQQGEwJaQTElMCMGA1UEChMcVGhhd3RlIENvbnN1bHRpbmcgKF B0eSkgTHRkLjEsMCoGA1UE
AxMjVGhhd3RlIFBlcnNvbmFsIEZyZWVtYWlsIElzc3VpbmcgQ0 ECEF0LYBAiw6o0EV6S7w7E
LuowCQYFKw4DAhoFAKCCAcMwGAYJKoZIhvcNAQkDMQsGCSqGSI b3DQEHATAcBgkqhkiG9w0B
CQUxDxcNMDYxMTI3MjM1MTMxWjAjBgkqhkiG9w0BCQQxFgQUTG vW4CVW155ZLc14JNd6JNoM
2n4wUgYJKoZIhvcNAQkPMUUwQzAKBggqhkiG9w0DBzAOBggqhk iG9w0DAgICAIAwDQYIKoZI
hvcNAwICAUAwBwYFKw4DAgcwDQYIKoZIhvcNAwICASgwgYUGCS sGAQQBgjcQBDF4MHYwYjEL
MAkGA1UEBhMCWkExJTAjBgNVBAoTHFRoYXd0ZSBDb25zdWx0aW 5nIChQdHkpIEx0ZC4xLDAq
BgNVBAMTI1RoYXd0ZSBQZXJzb25hbCBGcmVlbWFpbCBJc3N1aW 5nIENBAhBdC2AQIsOqNBFe
ku8OxC7qMIGHBgsqhkiG9w0BCRACCzF4oHYwYjELMAkGA1UEBh MCWkExJTAjBgNVBAoTHFRo
YXd0ZSBDb25zdWx0aW5nIChQdHkpIEx0ZC4xLDAqBgNVBAMTI1 RoYXd0ZSBQZXJzb25hbCBG
cmVlbWFpbCBJc3N1aW5nIENBAhBdC2AQIsOqNBFeku8OxC7qMA 0GCSqGSIb3DQEBAQUABIIB
ACeorOqeyuX/RFrklRwfTPZJPmbnMkY1y8vUO+KlHhOrKcPqMf04nGTNp+ikNq Mx8m/VviHZ
qVCaYb/Izp/Yc3JbU7TgeZCoJMF2VVIsJkFJPUcVstf+9PbCyAHsKtxDLR2mB Kh57NNDCQ6+
f9PN1F2zSBRazcCbEfVOKqdK2CShCgLOfJbDc9LHN0c/qpQ+4Ae3UoLv1++nx2hiTiEtj01t
XGHcKOfpWxBV9IUrG2wpMu+wrBoG1r6HhhOYE0CtqP+StD6PpM 67m5XC9goHOMQxPOMACuvD
FZ3czUWsJWuAnOoZrikSq2F3gzWg8Xeq8cU/hpMnJGRWR9NeSVe1di4AAAAAAAA=
--------------ms020005050508030007000008--

--===============0772034501==
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

_______________________________________________
firewall-wizards mailing list
firewall-wizards@listserv.icsalabs.com
https://listserv.icsalabs.com/mailma...rewall-wizards

--===============0772034501==--