VPN starts stoping some traffic

Unanswered Question
May 23rd, 2009

I have a ASA 5510 in Chicago and a ASA 5505 in NY and a tunnel between the two sites. At first everything works fine then a few hours later, hosts in Chicago can't communicate with all the hosts in NY and hosts in NY cant all communicate with Chicago. After clearing the SA's I am able to contact more hosts in New York but not all, but now all and my new hosts in new York have no issue contacting servers in Chicago until a few hours later then the cycle starts again. I have attached both configs.

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
bwilmoth Fri, 05/29/2009 - 12:31

The problem might be with the IP pool assignment either through ASA/PIX or Radius server. Use the debug crypto command in order to verify that the netmask and IP addresses are correct. Also, verify that the pool does not include the network address and the broadcast address. Radius servers must be able to assign the proper IP addresses to the clients.



This Discussion