Point to Site VPN timeouts

Copper Contributor

Hi I have an Azure domain environment(no-onprem) and have some users on a dissimilar domain that connect to it using the point-to-site VPN to access file shares.  The site-to-site VPNs work fine.  

 

The problem is they get disconnected from the point-to-site vpns sporadically throughout the day.  Is there a timeout or setting I can adjust to keep them connected all the time?  

6 Replies

you must clamp MSS at 1350. if not this could result in what you are mentioning.

have a look here, it will show you all the settings that are required for Azure.

 

Update: I did not notice this was Point to Site, what OS are they running ?

I appreciate the feedback but I don't think that's an option on the client side, there's no hardware that we can adjust this on.  We are using Windows 7.  

Is the disconnet during idle periods or does it happen during use ?

Sorry I should have specified them as idle timeouts, yes.  

I found this:

 

https://social.technet.microsoft.com/wiki/contents/articles/33193.azure-always-on-vpn-point-to-site-...

 

it uses scripts to make the tunnel always on. It is the only solution i have been able to find, unless you want to use Routing and Remote access in a IaaS VM

We have a similar problem where the user's connection to Azure VPN drops frequently.  At times, the user can fix the problem by rebooting his/her PC.  Other times, there is no solution.  A work-around is to have the user run the following .bat file (assumption is that user only has one RAS connection profile and one .pbk file)

 

:loop
forfiles /p %USERPROFILE%\appdata\roaming\microsoft\network\connections\cm /s /m *.pbk /c "cmd /c rasdial @FNAME /PHONEBOOK:@FILE"
timeout 30
goto loop

 

(note that the forfiles command above may be wrapped in the MSDN window.  batch file only has 4 lines.)