Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
468
Views
0
Helpful
0
Replies

ASA 5520 8.2(1) L2L VPN - Communication starts after manual failover

rakeshkr_dec
Level 1
Level 1

‎06-26-2019 07:22 AM

Hello,

I have 2 ASA 5520 with 8.2(1) OS. WE have multiple L2L VPNs with our Customer. But we are facing strange issue with.

To avoid IP conflict, we allot /32 IP address to source NAT from 10.2.28.0/24 pool.

Randomly VPN communication stops, where as IPsec tunnel shows up but user can’t access Servers and on ASA logging, I can see the Syn request but timeout after 1 minute. I have checked configuration, routing, NAT but all seems fine. I tried to fluctuate the tunnel many times, clearing SA’s but all in wain. Then I tried manual failover at ASA, then communication starts but after some time it again stops. Then I have to failover again.

Can someone suggest if it’s a configuration or bug issue that particular version or any compatibility issue with AWS and ASA?

 

Thanks,

Rakesh Kumar

Labels:
Preview file
72 KB
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card