Table of Contents
Advertisement
VPN>Advanced
The Advanced VPN Settings page includes optional settings that affect all VPN policies.
Advanced VPN Settings
•
Enable IKE Dead Peer Detection - select if you want inactive VPN tunnels to be dropped by the Son-
icWALL.
Dead Peer Detection Interval - enter the number of seconds between "heartbeats" in the Dead peer
detection Interval (seconds) field. The default value is 60 seconds.
Failure Trigger Level (missed heartbeats) - Enter the number of missed heartbeats in the Failure
Trigger Level (missed heartbeats) field. The default value is 3. If the trigger level is reached, the
VPN connection is dropped by the SonicWALL. The SonicWALL uses a UDP packet protected by
Phase 1 Encryption as the heartbeat.
•
Enable Fragmented Packet Handling - if the VPN log report shows the log message "Fragmented
IPSec packet dropped", select this feature. Do not select it until the VPN tunnel is established and in
operation.
Ignore DF (Don't Fragment) Bit - when you select Enable Fragmented Packet Handling, the Ignore
DF (Don't Fragment) Bit setting becomes active.
VPN Page 117
Advertisement
Table of Contents
