Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Firewall VPN outages

Hi,

I have a couple of L2L tunnels on a ASA 5510 firewall and from time to time (2 to 7 days) all the tunnels go down:

sh crypto isakmp sa

Active SA: 2

Rekey SA: 0 (A tunnel will report 1 Active and 1 Rekey SA during rekey)

Total IKE SA: 2

1 IKE Peer: x.x.x.x

Type : L2L Role : initiator

Rekey : no State : MM_WAIT

The issue doesn't resolve until I reboot the firewall.

Could this be a hardware problem? Where should I look on the firewall for more info?

Thanks.

BR,

Gabi

1 REPLY
New Member

Re: Firewall VPN outages

The problem can be that the xauth times out. Increase the timeout value for AAA server in order to resolve this issue .

287
Views
0
Helpful
1
Replies