We have several vpn users connecting to a NW 6.5, BM 3.8 (IPSEC) server.
There are three users in our Canadian office who have periodic disconnects.
They don't get an error at the client, the connection just stops responding.
They can reconnect and it is okay again...for a while. The time seems
random- anywhere from 10-15 minutes to an hour or more. The other users
don't seem to be experiencing this, but I don't know why it's happening.

The logs show the following for a normal disconnect:

VPN -- Wed Jul 6 08:28:46 2005
Received isakmp sa delete msg from 207.30.244.192 COOKIES are
[0A9DBEA87651159E - A60EE76FA0E7AF70]

VPN -- Wed Jul 6 08:28:50 2005
Client JJM.FOI removed from IPSEC.

VPN -- Wed Jul 6 08:28:50 2005
PFS NOT ENABLED - DELETING ALL IPSEC SA

VPN -- Wed Jul 6 08:28:50 2005
ESP-SA is deleted mySPI=47025D6C peerSPI=EFDBA681 dst :207.30.244.192

When our Canadian office gets dropped this is all that shows in the log:

VPN -- Wed Jul 6 14:39:48 2005
Ipsec deleted ESP-SA mySPI=31E0F041 peerSPI=70B589FD dst
:64.229.25.35

VPN -- Wed Jul 6 14:39:48 2005
ESP-SA is deleted mySPI=31E0F041 peerSPI=70B589FD dst :64.229.25.35

Any ideas why this is happening or what could cause the disconnects?

Dan Pearson


P.S.

I also found in the log a long string of the following messages repeated
many times over within 5 minutes:

VPN -- Wed Jul 6 16:57:30 2005
Proposal Mismatch - PHASE 1 Authentication method mismatch mine : RSA
signatures his : pre-shared key dst: 69.235.83.36 src: 151.204.190.59
cookies my-his :47AE23690A97F37E - 6D827CB4E0D09CD0

VPN -- Wed Jul 6 16:57:30 2005
Proposal Mismatch - PHASE 1 HASH Algorithm mismatch mine : MD5 his :
SHA dst: 69.235.83.36 src: 151.204.190.59 cookies my-his
:47AE23690A97F37E - 6D827CB4E0D09CD0

VPN -- Wed Jul 6 16:57:30 2005
Proposal Mismatch - PHASE 1 Encryption Algorithm mismatch mine : DES
his : 3DES dst: 69.235.83.36 src: 151.204.190.59 cookies my-his
:47AE23690A97F37E - 6D827CB4E0D09CD0