Tunnel not function well cause by: Detected Ping of Death attack. Dropped 1 packets.
Since install to the customer site, the tunnel is not fuction well evey time when SA Lifetime expired.
Each time after WAN1: Lifetime of the SA created in phase 1 of IKE negotiation expired. The tunnel build WAN1: IKE negotiation began in initiator mode. (Mode=Aggressive Mode, and WAN1: Phase 1 of IKE negotiation succeeded. And then it gets WAN1: Lifetime of the SA created in phase 1 of IKE negotiation expired and still build WAN1: IKE negotiation began in initiator mode. (Mode=Aggressive Mode, and WAN1: Phase 1 of IKE negotiation succeeded only. After TWO(2) times trying it gets Detected Ping of Death attack. Dropped 1 packets, Detected Ping of Death attack. Dropped 1 packets, Detected Ping of Death attack. Dropped 1 packets.
The other side using same router but firmware version is 4.0.3 Build 20180530 Rel.63202. There is no Detected Ping of Death attack. Dropped 1 packets after WAN1: Lifetime of the SA created in phase 1 of IKE negotiation expired.
Bith of them are not build WAN1: Phase 2 of IKE negotiation succeeded , WAN1: Set up IPsec connection successfully and WAN1: Enable DPD successfully. (DPD-Interval=10). Until manually disable and enable the tunnel then it works well.
Any reply will be appreciated.