Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
396
Views
0
Helpful
2
Replies

Any reliable version of ASA software available?

jason.scott
Level 1
Level 1

‎11-21-2006 01:08 AM - edited ‎02-21-2020 01:19 AM

We've got an ASA 5520 working as an endpoint for multiple vpn l2l tunnels. It initially had version 7.2 loaded but we have since downgraded to 7.1(2). However in both versions we are experiencing a problem whereby the box will occasionally begin denying traffic across already established tunnels with no reason. The logs always show 'deny inbound, flags syn on interface outside' messages. Additionally it usually cascades to eventually include all traffic on all tunnels.

I have also found that if I manually reset one of our tunnels this kick starts the above problem across all other tunnels. The only resolution I have found so far is to logout all l2l sessions. They immediately reform and the traffic starts to pass normally.

Looking through the bug database I cannot find this exact problem and the few that might be similar report as being resolved. Is there a stable firmware version out there yet or are they all somewhat buggy?

0 Helpful
2 Replies 2

bwilmoth
Level 5
Level 5

‎11-27-2006 06:22 AM

This is an issue with Access List. Make sure there is a permit entry in the access list for the particular type of traffic.

0 Helpful

miwiconab
Level 1
Level 1

‎12-05-2006 11:07 PM

Hi!

We have the same problem with two ASA5520 in diffrent environments. Also have a Tac case on this, but they cannot find the problem. Please let me now if you find anything. /Regards

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card