Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

at
New Member

VPN 3020 User Limit Reached ??

hello,

we have a VPN 3020 with SW 4.7.1;

For the moment there are 250 User configured for the internal server

If I want to add more User I will get a error message

Unable to set user name (Too Many Entries Error. Delete an entry before adding a new one).

The Max Session Limit is 750 --

What could be the problem ?

When I look at the config I only see 250 User !

Here the detail of the HW/SW:

VPN Concentrator Type: 3020

Bootcode Rev: Cisco Systems, Inc./VPN 3000 Concentrator Series Version 4.0.Rel Mar 25 2003 15:45:12

Software Rev: Cisco Systems, Inc./VPN 3000 Concentrator Version 4.7.1.Rel Jun 01 2005 02:16:46

Up For: 0:46:15

Up Since: 09/23/2005 12:16:58

RAM Size: 256 MB (Memory Status: Green)

regards

Alex

3 REPLIES
New Member

Re: VPN 3020 User Limit Reached ??

Hi,

may not be related but - are the users IPSec or Webvpn? as the webvpn has a much lower limit. I had a similar problem with a 3030 device where the max limit was 250 webvpn users. I needed a 3030E device to get upto 500 users.

Regards

John

at
New Member

Re: VPN 3020 User Limit Reached ??

hi

thank you for your answer --

the users are ipsec user

in the config there are no more than 250 user

here the entries in the config of the vpn 3020:

[user 0.1]

value=

[user 0.2]

value=

[user 0.11]

value=

[user 0.27]

value=

[user 0.28]

value=

...

[user 249.1]

value=

[user 249.2]

value=

[user 249.25]

value=

[user 250.1]

value=

[user 250.2]

value=

[user 250.25]

value=

[group 2]

...

alex

New Member

Re: VPN 3020 User Limit Reached ??

My guess would be that although there's a SESSION limit of 750 users, there's an INTERNAL SERVER config limit of 250 users!

Use some external authentication method instead.

Especially with that many users, integrating it into AD domain, or something is probably a good idea, and would simplify management.

224
Views
0
Helpful
3
Replies