Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
552
Views
0
Helpful
2
Replies

Devices randomly inaccessible

thanmad
Level 1
Level 1

‎05-31-2012 12:11 PM - edited ‎03-04-2019 04:32 PM

This is my current config:

Offsite                                                                                                                   Central Office

--------    -----------------     ---------------    ------------------------------    -----------------   ----------    -------

| PC |    | 3560-EMI |     | ASA501 |   | Comcast Business |   | ASA5520 |   | 6509 |   | PC |

--------    -----------------     ---------------    ------------------------------    -----------------   ----------    -------

I've got a VPN L2L tunnel between my offsite and my central office.  Everything seems to work most of the time, but every now and then i loose connectivity to random devices.

for example, right now I cannot ping the interface on the 3560-EMI, however i can ping the PC on the other end of it.  A few minutes from now, the 3560 will be pingable and i will probably notice another device that is no longer accessible.

It almost seems as if the ARP table is corrupt or inconsistant.  Another example would be 2 separate PCs on the Offsite side, I can ping one but not the other.  If i telnet into the 3560 i can ping both PCs without issue, but once i get to the other side of the ASA5520 I no longer can see both devices...A few minutes later the second PC will be visible again from the Central Office.

I'm at a loss, i will gladly provide configs and more examples, but I don't even understand how to approach looking deeper into this.

ideas?

Labels:
0 Helpful
2 Replies 2

lgijssel
Level 9
Level 9

‎05-31-2012 12:20 PM

The ASA501 is probably a PIX501? In that case, check the license.

The default shipment of this device was for 10 concurrent hosts.

Your description accurately matches the effects you get when there are more than 10 inside hosts on the PIX.

Just perform a sh ver on the firewall PIX501 and you will see the license info.

However, to resolve this is somewhat more complex. The PIX is end of everything since years so your best chance is to exchange it for an ASA5505.

regards,

Leo

0 Helpful

thanmad
Level 1
Level 1
In response to lgijssel

‎06-01-2012 09:55 AM

Sorry, my bad, it's an ASA5005.  As far as i can tell the licensing says unlimited, so i don't think it's that.  But it does sound similar since we have about 10 devices over there.

It gets more interesting, right now i have a video camera that i'm still recieving video from, but i cannot ping it.  If I reset my connection i lose the video feed.  In an hour or so I'll probably be able to ping it again and get video.

Ideas?

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card