Forum Discussion
Rusty_M_140798
Nimbostratus
NimbostratusSSL VPN Disconnect Issue
We currently have an issue with our SSL VPN connection disconnecting on random intervals. I do have a open support case and unfortunately not making any drastic headway, so reaching out here to see i...
Check the DNS settings of the F5 and make sure it can resolve the sslvpn fqdn.
Background: We had similar issues, the PPP tunnel kept randomly closing and opening a new one, which caused the clients to reconnect, which in turn caused traffic not flowing while the PPP tunnel did a new handshake.
There were no evidence in the LTM log why this happens, but the Edge client log revealed that DNS lookup for the APM endpoint (LTM VIP) didn't resolve. The client machine actually could resolve it, but the F5 itself couldn't. After changing the DNS servers in F5 to ones that resolved correctly the problem seems to have been solved.
Grayson_149410Nimbostratus
NimbostratusDid you ever find a fix for this? We just went through a Firepass to APM changeover. For some people it works great, but we are finding a lot of people are getting disconnected at the five minute mark. We have a VS listening on 443 and then another Forwarding VS that is used to route their connections down a different path. We set the Client Profile Protocol to a custom Fast Level 4 with Idle Timeout set to indefinite so that applications handle that, but still seems to be affecting people.
Rusty_M_140798Nimbostratus
NimbostratusSo commenting on a old problem late, short answer is no we have not found a solution to this. I still have a case open and the issue still exists on 11.6 HF4. Some users never have a problem and others have it constantly, we have even gone as far as re-installing the OS. Currently we are packet capturing for development support.
For your issue if it is 5 minutes on the dot then I would say it is a timeout issue. Search though the protocols and see if there is anything that is set to 5 min or 300 seconds.