I have an obscure problem. I have an ASA 5510 as the hub device in my network with 33 spoke nodes. The spokes are a mix of 2821 and 2651 routers. My network is fully meshed (to support site-to-site VOIP). I use IPSEC (L2TP) tunnels and âhair pinningâ For the most part, everything seems to operate fine with the occasional exception of the rekeying process.
At random intervals when the rekeying process takes place, Phase 2 completes and then immediately the Remote Peer terminates the connection and the rekeying process starts again. This can happen 30 or 40 times in a 25 or 30 second period. The normal rekeying process (lifetime security association) happens in a second or two. During the drawn out rekeying process voice calls between sites experience âone-wayâ or âno-wayâ audio. Examination of the ASA logs reveals that the remote proxy subnet in the peer termination seems to always be my voice VLAN at the remote site.
I currently have IPSEC debugging turned on in one of my remote routers to try and capture more info (cause of the termination) but it is so random it is like looking for a needle in a haystack.
Anyone seen this before or have any ideas why the peer would act like this?