Knowledgebase
Explanations of LAN-to-LAN VPN Timeout Values
Posted by on 25 January 2012 05:20 PM

Always on - only for "Dial-out" side.

 

The VPN client router will never drop the VPN connection.  Once the VPN is disconnected from the remote side, the client will re-connect it automatically.

 

http://www.draycare.com.au/dfaq/image/VPN/04/vpn_05.JPG

0:     Never drop VPN.


If this value is set on the "Dial-in" side, then the VPN server will never disconnect the VPN tunnel even if there is no traffic.


If this value is set on the "Dial-out" side, then the VPN client will not disconnect the tunnel even if there is no traffic. If the VPN server disconnects the tunnel, the client will not re-connect automatically unless there is traffic to trigger the VPN dial behaviour.

 

http://www.draycare.com.au/dfaq/image/VPN/04/vpn_06.JPG

 

Value greater than 0:       

 

If no traffic passes through the VPN tunnel for x seconds, the router will disconnect the tunnel. The default value is 300 seconds.


If this value is set on the "Dial-in" side, the VPN server will disconnect the VPN tunnel.
If this value is set ion the "Dial-out" side, the VPN client will disconnect the VPN tunnel.

 

http://www.draycare.com.au/dfaq/image/VPN/04/vpn_07.JPG

 

Ideal settings

 

Ideal settings for VPN server and client are:

  • Server side(dial-in) – set timeout value to 0
  • Client Side(dial-out) – set timeout value to “"always on"

 

Using these settings the server will never drop the VPN.  If there is an event that causes the VPN tunnel to drop, then the client will always re-connect.
The VPN should be very stable.

 

(2 vote(s))
Helpful
Not helpful

Comments (0)