NETGEAR UTM5-100NAS Network Hardware User Manual


 
ProSecure Unified Threat Management (UTM) Appliance Reference Manual
7-58 Virtual Private Networking Using IPsec Connections
v1.0, January 2010
3. In the IKE SA Parameters section of the screen, locate the DPD fields.
4. Select the radio button and complete the fields as explained Table 7-21.
5. Click Apply to save your settings.
Figure 7-32
Table 7-21. Dead Peer Detection Settings
Item Description (or Subfield and Description)
IKE SA Parameters
Enable Dead Peer
Detection
Select the Yes radio button to enable DPD. When the UTM detects an IKE
connection failure, it deletes the IPsec and IKE SA and forces a
reestablishment of the connection. You must enter the detection period and
the maximum number of times that the UTM attempts to reconnect (see
below).
Detection Period The period in seconds between consecutive
“DPD R-U-THERE” messages, which are sent only when
the IPsec traffic is idle. The default setting is 10 seconds.
Reconnect after
failure count
The maximum number of times that the UTM attempts to
reconnect after a DPD situation. When the maximum
number of times is exceeded, the IPsec connection is
terminated. The default setting is 3 IKE connection
failures.