Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

ASA not responding to IPSEC

ASA 8.0(2)

ASDM 6.0(2)

All of a sudden our ASA 5520 stops responding to IPSEC clients trying to connect (both tcp/10000 and udp/4500). We don't even get any attempts in our logs. It works one day and stops working another. All other communication inbound/outbound works fine. WebVPN works fine for example.

Any ideas?

Rutger

2 REPLIES
Silver

Re: ASA not responding to IPSEC

The problem could be because of DPD's. Try to turn off the DPDs on the problematic client and also on the ASA. Go into the pcf on the problematic computer and set this equal to 1 and then on the ASA under the tunnel-group disable the isakmp keepalive (isakmp keepalive disable).

New Member

Re: ASA not responding to IPSEC

Thanks for your reply.

It is not only one client machine having troubles, but all of them. The ASA stops serving IPSEC VPN.

I will try with turning off DPD on the ASA and the client. The client is getting their settings from an ACS. Is it enough to disable it on the ACS group or do we have to disable it by editing the PCF?

144
Views
0
Helpful
2
Replies