cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1340
Views
0
Helpful
5
Replies

Cisco ASA - what happens with TCP connections after VPN reconnects?

vedburtruba
Level 1
Level 1

Hello!

I am trying to figure out - what is going on with TCP sessions on ASA when VPN client who patricipate in it disconnects and then reconnect again. It seems that ASA doesn't delete this TCP session from Conn table. Instead it waits for next packet within this connection and drops it with reason "Tunnel has been torn down" and then deletes session from Conn. So, is it any way to force it to clear TCP-session immediately if client disconnects or not to drop it after reconnection?

5 Replies 5

nine_2012
Level 1
Level 1

Do the users disconnects the client themselves or the vpn connection just drops and then you face this tcp issue?

We are working on it now, but it seems not working for unknown reason. I don't have access to device, just consult my client. Is there any verification and debuging advice for this feature? I have not found it.

I will look in to any valid proof if I have but reading the description seems to solve the issue.

We face this issue when vpn tunnel drops. But even if VPN connection closes gacefully ASA still keeps the connection in its conn table but restrict to reuse it.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: