Dead peer detection (DPD)

This method of connection monitoring is used when VPN clients dial-in to a VPN gateway. This is designed to ensure that a client is logged out if there is an interruption to the VPN connection, for example when the Internet connection is interrupted briefly. If the line were not to be monitored, then the VPN gateway would continue to list the client as logged-on. This would prevent the client from dialing in again as, for example, the WLANmonitor does not allow a simultaneous dial-in using the same serial number.

Important: For the same reason, without line monitoring a user with the same "identity" (user name) would be prevented from dialing in because the associated user would still be in the list for the logged-in client.

With dead-peer detection, the gateway and client regularly exchange "keep alive" packets. If no replies are received, the gateway will log out the client so that this ID can be registered again once the VPN connection has been re-established. The DPD time for VPN clients is typically set to 60 seconds. Possible values: 0 – DPD deactivated; 30 to 4,294,967,294 seconds

The settings for dead peer detection in LANconfig are located under VPN > IKE/IPSec > Connection list.





Command line: Setup > VPN > VPN-Peers

www.lancom-systems.com

LANCOM Systems GmbH | A Rohde & Schwarz Company | Adenauerstr. 20/B2 | 52146 Wuerselen | Germany | E‑Mail info@lancom.de

LANCOM Logo