You have been asked to troubleshoot a VoIP connectivity problem that occurs every t me the IPSec VPN tunnel drops. The SRX Series device has a default route to the Internet and receives a more specific route for the VoIP server over the IPSec tunnel using OSPF. Every time the tunnel drops, when the tunnel re-establishes, the NOC must manually clear the sessions on the SRX device for these VoIP sessions to work again.
What can you do to resolve this problem?
Configure the route change timeout value under the flow options.
Configure OSPF to advertise the default route to the SRX device.
Write security policies bidirectionally so either side can initiate traffic.
Configure the IPSec tunnels to establish tunnels immediately.