Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
245
Views
0
Helpful
1
Replies

l2l-tunnel failover fails

dr.f
Level 1
Level 1

‎03-08-2007 08:21 AM

Hello,

being not familiar yet with ASA's (2x 5510 with 7.2(1)) I'm not able to set up an l2l-tunnel failover (active/standby). On the primary(active) ASA the l2l-tunnel works without errors, but the when the secondary(standby) ASA became active I get the following errors:

%ASA-6-713219: IP = xxx.xxx.xxx.xxx, Queuing KEY-ACQUIRE messages to be processed when P1 SA is complete.

%ASA-3-713902: IP = xxx.xxx.xxx.xxx, Removing peer from peer table failed, no match!

%ASA-4-713903: IP = xxx.xxx.xxx.xxx, Error: Unable to remove PeerTblEntry .

Maybe somebody has an tip for me.

TIA,

Dit

Labels:
0 Helpful
1 Reply 1

dsweeny
Level 3
Level 3

‎03-14-2007 06:47 AM

There could be a number of reasons for your problem. First make sure that it is working in single routed mode. It will not work in multi-context and/or transparent firewall mode. Also a failover key must be configured.

Following link may help you.

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a00805a87f7.shtml

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents