Issue with ASA to ASA Tunnel dropping during rekey, PIX to ASA works fine

Unanswered Question
Feb 27th, 2008
User Badges:

Hi All,

Working with TAC regarding this ongoing issue but wanted to see if any of you out there have experienced this issue.

ASA running 8.0.3 with the same exact model and software ASA 8.0.3 connected over a VPN tunnel. The remote ASA is connecting via dynamic IP. According to the debug logs, the tunnel is dropped for approx 1 minute during the rekey and comes back online without any issue.

The strange issue is PIX's running 6.3 are connected using the same VPN (also dynamic) configuration and have no issues at all with the tunnel dropping.

We have checked the following:

- Encryption/VPN settings and lifetime identical at all sites

- ACL configured correctly

- Lifetime set by time, not traffic

- Reloaded all sites to bring the VPN links up.

Any other suggestions I might want to look at or check?


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)


This Discussion