Tunnel not function well cause by: Detected Ping of Death attack. Dropped 1 packets.
This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.
Since install to the customer site, the tunnel is not fuction well evey time when SA Lifetime expired.
Each time after WAN1: Lifetime of the SA created in phase 1 of IKE negotiation expired. The tunnel build WAN1: IKE negotiation began in initiator mode. (Mode=Aggressive Mode, and WAN1: Phase 1 of IKE negotiation succeeded. And then it gets WAN1: Lifetime of the SA created in phase 1 of IKE negotiation expired and still build WAN1: IKE negotiation began in initiator mode. (Mode=Aggressive Mode, and WAN1: Phase 1 of IKE negotiation succeeded only. After TWO(2) times trying it gets Detected Ping of Death attack. Dropped 1 packets, Detected Ping of Death attack. Dropped 1 packets, Detected Ping of Death attack. Dropped 1 packets.
The other side using same router but firmware version is 4.0.3 Build 20180530 Rel.63202. There is no Detected Ping of Death attack. Dropped 1 packets after WAN1: Lifetime of the SA created in phase 1 of IKE negotiation expired.
Bith of them are not build WAN1: Phase 2 of IKE negotiation succeeded , WAN1: Set up IPsec connection successfully and WAN1: Enable DPD successfully. (DPD-Interval=10). Until manually disable and enable the tunnel then it works well.
Any reply will be appreciated.
