pix vpn disconnection / vpn concentrator

Unanswered Question
Sep 23rd, 2009

Hi Cisco team,

Could you pls let me know what are the possible reasons of site to site vpn intermetent disconnections between a pix appliance and vpn concentrator. This setup was working before and recently only we are facing such issues. Your inputs are appreciated.

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 2 (1 ratings)
Loading.
auraza Wed, 09/23/2009 - 07:50

Rajesh:

Depends on the exact issue. If you are seeing the tunnel dropping, you'd have to see why its dropping: DPD failure, one side sending deletes, packets not being received by one device, etc.

If you are just experiencing packet loss, then it could be due to the packet being dropped in transit, or maybe you have high CPU resulting in packets being dropped.

-aun.

PS. please rate this post, if you feel the response was helpful.

Sec IT Thu, 09/24/2009 - 05:14

Hi,

Im getting Received encrypted packet with no matching SA, dropping & Removing peer from correlator table failed, no match! logs in the firewall. Does it mean anything mismatch in P-2 proposals ?

moreover, isakmp enable outside is there in the config, does it require a crypto map map_name interface outside command also.?

Sec IT Wed, 09/30/2009 - 23:37

Hi: Pls check the configuration and logs.

For security, i have erased/changed some of the config.

regards

~PR

Sec IT Thu, 10/01/2009 - 00:59

Hi auraza - CISCO SYSTEMS,

Can you pls check the config and logs...

Sec IT Mon, 10/05/2009 - 02:15

Can someone good security, put some light on this.

Sec IT Wed, 10/07/2009 - 23:57

Hi Cisco systems..

Can you please help me on this...

~PR

Sec IT Mon, 10/12/2009 - 04:45

HI TEAM; CAN YOU PLEASE HELP ME TO IDENTIFY WHERE THE ISSUE IS ??????

~PR

Actions

This Discussion