Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

strange ASA error message after update

Hi,

we are running two 5520 ASAs in Active-Standby-Failover and since we flashed the ASA to the newest

interim firmware release 8.2(2)17, we see the following entry:

%ASA-5-720012: (VPN-Secondary) Failed to update IPSec failover runtime data on the standby unit.

This happens every few seconds and about 20 times per second. The documentation just says:

Error Message    %ASA-6-720012: (VPN-unit) Failed to update IPSec failover runtime data 
on the standby unit.

Explanation   This message appears when the VPN failover subsystem cannot update IPSec-related  runtime data because the corresponding IPSec tunnel has been deleted on the standby unit.

unit—Either Primary or Secondary

Recommended Action   None required.

Although the error message just is a level-5 message, it's a bit worrying, because it shows that the

secondary ASA out of sync concerning IPsec failover data.

Does anyone has any ideas what to do?

Is it just due to the new firmware, that makes the ASA more chatty or is it maybe a more severe problem?

Thanks!

5 REPLIES
Cisco Employee

Re: strange ASA error message after update

Peter,


This looks like a new bug that hasn't been addressed yet.  I would open a TAC case so that they are aware and can work with the developers and get the issue resolved.

--Jason

New Member

strange ASA error message after update

Has this issue been resolved, I am getting the following error :

(VPN-Secondary) Failed to update IPSec failover runtime data on the standby unit.

I'm running 8.2(4)4

New Member

Re: strange ASA error message after update

Ich bin ab 05.09.2011 wieder für Sie da. In dringenden Fällen

können Sie sich an die Hotline des Rechenzentrums

(hotline@rz.uni-wuerzburg.de, Tel. 0931/31-85050) wenden.

>>> network770 08/30/11 17:19 >>>

Ronni Ronni created the discussion

"Re: strange ASA error message after update"

To view the discussion, visit: https://supportforums.cisco.com/message/3432370#3432370

New Member

SolutionThese error messages

Solution

These error messages are informative errors. The messages do not impact functionality of the ASA or the VPN.

These messages appear when the VPN failover subsystem cannot update IPsec-related runtime data because the corresponding IPsec tunnel has been deleted on the standby unit. In order to resolve these, run the wr standby command on the active unit.

Thanks

Jai

New Member

Hi Jai,the problem has been a

Hi Jai,

the problem has been a bug in the code that has been fixed some time ago.

The messages were not just informational, but the information never got replicated to the standby in our setup.

Best regards,

Markus

 

3956
Views
0
Helpful
5
Replies