we've got a replication issue concerning IPsec and SSL VPN connections. On the ASDM of the primary ASA e.g. i can see about 3 times more IPsec connections displayed than on the standby ASA. At the moment theres a difference of more than 40 ipsec connections (primary 63, standby 21). When looking at the SSL VPN connection counter, i see a difference of 4 connections (primary 40, standby 36). Same result when using the cli commands to show the number of VPN connections. So when it comes to an failover, the standby unit probably loses lots of VPN connections we fear.
We are running the latest firmware version 8.2(3) and ASDM 6.3(3).
Can anyone check his/her VPN stats and tell me, if you also see a difference in the VPN connection counter between the active and standby ASA?
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...