Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations SkipVought on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

ASA 5505 VPN Tunnel Drops

Status
Not open for further replies.
wattie29

wattie29

Technical User
May 28, 2003
83
0
0
ZA
Hello All,

Have a LAN to LAN VPN tunnel configured between a Cisco ASA 5505 and a Cisco 877 router. I am tunneling three subnets down the tunnel and all is working fine.

Except that at least once a day the link will drop for approx. 1 hour and then recover itself. It only happens on one subnet at a time so it is not a connectivity issue.

Anyone got any ideas?
 
Sort by date Sort by votes
Are there any SA's for this tunnel during that time?
sh crypto ipsec sa peer <peer ip>

Are there any time or data limits on the tunnel?
sh ru crypto | <peer ip> look for kb or time settings

Are other vpns affected?

If your syslogs do not provide any useful information, consider turning on Phase I and Phase II debugging during that down time.

debug crypto ipsec
debug crypto isakmp
debug crypto engine

when done:
no debug all

Please let me know how this turns out.

IT Security news and information
In plain English
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

AllenH12
  • Locked
  • Question
Bandwidth in Cisco ASA 5505
Replies
2
Views
120
AllenH12
AllenH12
intel233
  • Locked
  • Question
Cisco ASA - VPN Question
Replies
6
Views
145
intel233
intel233
WhosYourDiffie
  • Locked
  • Question
Cisco ASA 5506 VPN for Avaya Phones
Replies
0
Views
51
WhosYourDiffie
WhosYourDiffie
gkreg
  • Locked
  • Question
asa 5500-x url filtering
Replies
0
Views
87
gkreg
gkreg
intel233
  • Locked
  • Question
Cisco ASA 5510 -Static NAT Help
Replies
8
Views
156
intel233
intel233

Part and Inventory Search

Sponsor

Back
Top