Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

vpn tunnel behavior

Hello,

 

I have a HA pair of Cisco ASA 5510's and the configurations are identical. The customer has about 100 vpn tunnels on the ASA. There was a link failure on the primary firewall and had to failover to the secondary but when it failed over, only about 17 of the tunnels came up. Does anyone know why all the tunnels would come up? As soon as the link failure was fixed and I failed it back over to the primary firewall all the tunnels came right back up. I noticed that if I run a "sh crypto isakmp sa" on the standby firewall, all the tunnels are in "MM_STANDBY". Since they are in standby shouldn't the tunnels become active once the firewall becomes active?  Any info would be appreciated. Both ASA's are on code version 7.2(4) and have 256 MB RAM. 

 

Thanks!

34
Views
0
Helpful
0
Replies
CreatePlease login to create content