https://community.cisco.com/t5/network-security/cisco-asa-issue/m-p/5348053#M1123568 <P>Hello everyone,</P><P>I’m currently troubleshooting an issue with a Cisco ASA5515-Edge running in a failover cluster (Primary/Secondary). For the past several days, the cluster has been experiencing intermittent problems that we have not seen before.</P><P>Issue Description<BR />Several users intermittently fail to establish connections (VPN or other sessions) for a period of time.</P><P>During these events, ASDM access becomes completely unavailable — the ASDM client cannot connect.</P><P>However, the device still responds to ICMP (ping), and SSH access remains functional.</P><P>No major configuration changes were made recently.</P><P>Temporary Workaround<BR />The only action that restores normal operation is performing a manual failover:</P><P>Switch from Primary → Secondary</P><P>Then switch back Secondary → Primary</P><P>After this failover cycle, the issue disappears temporarily.</P><P>Request for Guidance<BR />What could potentially cause this behavior, and what should we check to diagnose the root cause? We are particularly interested in:</P><P>Logs or counters that may indicate resource exhaustion (CPU, memory, sessions, ASP drops, etc.)</P><P>Any known issues/bugs related to ASDM access failure or cluster instability on ASA5515</P><P>Whether a stuck process, management-plane issue, or failover sync problem could cause these symptoms</P><P>We would appreciate any suggestions or recommended troubleshooting steps.</P> Tue, 18 Nov 2025 16:57:51 GMT ElizabethKh 2025-11-18T16:57:51Z https://community.cisco.com/t5/network-security/cisco-asa-issue/m-p/5348053#M1123568 <P>Hello everyone,</P><P>I’m currently troubleshooting an issue with a Cisco ASA5515-Edge running in a failover cluster (Primary/Secondary). For the past several days, the cluster has been experiencing intermittent problems that we have not seen before.</P><P>Issue Description<BR />Several users intermittently fail to establish connections (VPN or other sessions) for a period of time.</P><P>During these events, ASDM access becomes completely unavailable — the ASDM client cannot connect.</P><P>However, the device still responds to ICMP (ping), and SSH access remains functional.</P><P>No major configuration changes were made recently.</P><P>Temporary Workaround<BR />The only action that restores normal operation is performing a manual failover:</P><P>Switch from Primary → Secondary</P><P>Then switch back Secondary → Primary</P><P>After this failover cycle, the issue disappears temporarily.</P><P>Request for Guidance<BR />What could potentially cause this behavior, and what should we check to diagnose the root cause? We are particularly interested in:</P><P>Logs or counters that may indicate resource exhaustion (CPU, memory, sessions, ASP drops, etc.)</P><P>Any known issues/bugs related to ASDM access failure or cluster instability on ASA5515</P><P>Whether a stuck process, management-plane issue, or failover sync problem could cause these symptoms</P><P>We would appreciate any suggestions or recommended troubleshooting steps.</P> Tue, 18 Nov 2025 16:57:51 GMT https://community.cisco.com/t5/network-security/cisco-asa-issue/m-p/5348053#M1123568 ElizabethKh 2025-11-18T16:57:51Z https://community.cisco.com/t5/network-security/cisco-asa-issue/m-p/5348116#M1123572 <P>Are you running anyconnect with TLS or with ikev2?</P><P>it’s seem to be you running anyconnect with TLS therefore when there is a issue where remote client are not able to connect at that same time ASDM does not work either as ASDM works on TLS.&nbsp;<BR /><BR /></P><P>issue could be at control plan on regards to logging it would be difficult to diagnose unless otherwise you setup syslog and offload them to external server and when issue occurs you can refer to logs to find out what logs suggest you.&nbsp;<BR /><BR /></P><P>your firewall is EOL/EOS consider upgrading with in life appliances.&nbsp;</P> Tue, 18 Nov 2025 20:25:01 GMT https://community.cisco.com/t5/network-security/cisco-asa-issue/m-p/5348116#M1123572 Sheraz.Salim 2025-11-18T20:25:01Z