08-03-2010 06:51 AM
I've got a question.
Our Cisco ASA hangs once a month with ssl vpn. It loads the login screen but that's it.I can't login or what so ever..
When I restart the ASA everythings works fine.
Has anyone here experienced this problem also? I have no idea where to look for this problem..
Thanks.
Geert Reijnders
08-03-2010 07:07 AM
This is more than likely related to a memory leak. What version of ASA code are you currently running? You may want to disable WebVPN caching as a first step and then monitor the memory utilization on the appliance. If the issue persists, we will need to enable some memory tracking features in order to isolate further.
R1-ASA5505-01# conf t
R1-ASA5505-01(config)# webvpn
R1-ASA5505-01(config-webvpn)# cache
R1-ASA5505-01(config-webvpn-cache)# disable
08-03-2010 07:31 AM
Thanks for quick reply.
I just disabled the cache for the webvpn. Hopefully this will help. I will update this as I know something more.
As you can see, the memory usage is pretty high...
SSL-Firewall# sh mem
Free memory: 104391152 bytes (39%)
Used memory: 164044304 bytes (61%)
------------- ----------------
Total memory: 268435456 bytes (100%)
08-03-2010 08:57 AM
look at the cpu and mem when the webvpn hangs
08-03-2010 08:58 AM
What is the purpose of the webvpn cache for. ?
08-03-2010 09:05 AM
Webvpn cache is like any other cache. Stores data in fast memory so that it can be reused frequently. Refer here for details :
http://www.cisco.com/en/US/docs/security/asa/asa72/configuration/guide/webvpn.html#wp1046565
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide