Configuring Advanced Site-to-Site VPN Settings

Purpose: Configure advanced options for site-to-site VPN settings including whether to use dead peer detection and enabling/disabling IKE debugging. Advanced settings apply to all site-to-site VPN connections on the gateway appliance.

Location: Gateways > (gateway name) > Site-to-Site VPN > Advanced

  1. Configure advanced site-to-site VPN settings.
    Option Description

    Dead peer detection

    Dead peer detection (DPD) identifies inactive or unavailable IKE peers. Using IPsec traffic patterns, DPD can use a minimal number of IKE messages to confirm whether the connection is live. DPD is used to restore resources that are lost when a peer is unavailable. Selecting Enable dead peer detection reestablishes VPN tunnels on idle connections and cleans up dead VPN peers if required.

    IKE Debugging

    Enable or disable IKE debugging.

  2. Click Save.