Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

6500 FWSM Connection problem with IPsec

Dear All,

I am facing very strange problem.We are giving networking servies to customers.We have cisco 6509 switch which having FWSM module where we have create different Vlans for different customers.We have define access list for each vpn to permit ip any any .SO we dont block any of customer traffic.Then also many time when i check FWSM logs in VMS i see that many IPsec connections are failed ,these logs are coming on daily basis.Is any one facing same problem.One more problem i am facing that is when remote brach is not connected then also i can able to see that connection is establised between Head Office Loopback IP and Branch Loopback IP.




Re: 6500 FWSM Connection problem with IPsec

There could be a possiblity of slow memory leak that is occuring over a period time and when you reach a stage at very low free memory, you start seeing the FWSM error messages

New Member

Re: 6500 FWSM Connection problem with IPsec

Dear Martin ,

Thanks for ur reply but this is not memory or CPU issue as i hv check this is under control.

Please find my network setup

1) Create sepearate Vlan for all customer.

2) Apply access list permit ip any any to all interfaces

3) I can see Ipsec connection between HO Loopback IP & remote IP on UDP port 500.

Problems I am facing is that : -

1) When any of remote site is going down but Ipsec connection still there in my FWSM

2) I have already told that i have defined ACL which permit all ip traffic then also many time Ipsec tunnel is not establised ,find logs below


No translation group found for protocol 50 src TEST: dst CISCO:

No translation group found for protocol 50 src TEST : dst TISCO:

No translation group found for protocol 47 src TEST : dst HERO:


IS anyone facing such problem pls share your ideas




CreatePlease login to create content