Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
287
Views
0
Helpful
1
Replies

SPAN - ASA inside port on a 3750 switch - Time-outs

anandramapathy
Level 3
Level 3

‎08-27-2007 02:28 AM - edited ‎03-05-2019 06:07 PM

Hi,

I have 2 ASAs 5520 AIP-SSM in Active/Failover mode connected to 2 3750 Switches.

The 2 3750 switches are trunked with each other & are the LAN Gateway running HSRP for the LAN. They also have a couple of VLANs & are running EIGRP ( connected to the Core switces via Gigabit Uplink )

I am spanning the Inside interface connected to the 3750 switch onto a Surfcontrol Server for url Filtering.

The moment i span the port, i start getting occasional timeouts when i ping the internal interface of the ASA 5520.

There are no errors / CRC on either the Switch / the ASA.

THe inside Interfaces are 1000 MB / Full Duplex

Can someone help me troubleshoot.

Labels:
0 Helpful
1 Reply 1

jbayuka
Level 5
Level 5

‎08-31-2007 10:34 AM

I think you would need to add to disable the IDLE-TIMEOUT for the ezvpn tunnel;-

group-policy ashford-ezvpn attributes vpn-idle-timeout 0

If it does fail again, we would need a capture of the tunnel going down with the vpn debugs currently running on ASA and router.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card