Hi John,

John Nemeth wrote:

>Sanitised configs are below for the connection to the Sonicwall (note
>that it likes 24 hour SA timeouts).
>  
>

But you specify 24hours for ALL timeouts, not just for SA which is 
probably not correct.
I had problems like yours with a connection to Checkpoint FW-1 for some 
month.
Then I discovered that it works much better not to set any timeouts at 
all and let both partys
negotiate them.
 
   Werner