Our FMC keeps throwing in the same VPN status event "VPN tunnell between FWA/peerip/subnetX and FWB/peerip/subnetY is inactive due to to Deleted backup session"
Firstly any idea what a backup session refers to? If its a VPN SA, well I've checked the Firewalls and the VPN SA for these subnets is ok on each side. Traffic is being encrypted/decrypted, SPIs match. I have no inactive SAs on the FTDs. So why does FMC keep reporting this?
Secondly, since it'sthe same message every 2-3 mins including the subnets in question, shouldn't the Health Events Value column count increment instead rather than generating a new message?
We're seeing this as well, but for VPN configurations that overlap with another's extranet protected networks (as a backup session). The errors point to it being a critical issue, but the other session is up and traffic is flowing as expected.
These VPN sessions are to AWS and Azure.
I believe this only appeared for us after upgrading from 22.214.171.124 to 6.6.1 for the FMC 1000. Any ideas? It's just adding to the list of alerts we're getting that are of no significance to us.
If anyone has discovered what could be the reason please share. I have a policy based routing and have routed all the traffic from one site to the HQ. After that change the message keeps rolling in. Everything seems to be working as the tunnel is up and i can pig bidirectional as well as all the routes to internet and all is going trough the tunnel.
Did anyone ever get an answer to this string? I have been getting the same for quite a while and everything seems to be working. Just want to know if I have something misconfigured that would cause this.Thank You