ProSecure Unified Threat Management UTM10 or UTM25 Reference Manual
Virtual Private Networking Using IPsec Connections 7-57
v1.0, September 2009
3. In the IKE SA Parameters section of the screen, locate the DPD fields.
4. Select the radio button and complete the fields as explained Table 7-21.
5. Click Apply to save your settings.
Figure 7-32
Table 7-21. Dead Peer Detection Settings
Item Description (or Subfield and Description)
IKE SA Parameters
Enable Dead Peer
Detection
Select the Yes radio button to enable DPD. When the UTM25 detects an IKE
connection failure, it deletes the IPsec and IKE SA and forces a
reestablishment of the connection. You must enter the detection period and
the maximum number of times that the UTM attempts to reconnect (see
below).
Detection Period The period in seconds between consecutive
“DPD R-U-THERE” messages, which are sent only when
the IPsec traffic is idle. The default setting is 10 seconds.
Reconnect after
failure count
The maximum number of times that the UTM attempts to
reconnect after a DPD situation. When the maximum
number of times is exceeded, the IPsec connection is
terminated. The default setting is 3 IKE connection
failures.