cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
673
Views
0
Helpful
1
Replies

ASA 5525, v9.1.2 - IPAA: Error freeing address ip-address, not found

 
Hello everybody!

The following problem:

VPN-dial-in on the ASA .
There are different VPN group policies , each with its own DHCP pool .
Authentication is performed by the AAA AD .
Everything works properly.

However, 3 users of a VPN group can not dial in . On the firewall then this error always comes in the log :

IPAA : Error freeing address 172.24.16.41 , not found

That address is nowhere else on the firewall , but was once assigned to a user . But this Network Object is deleted now.

The DHCP pool for this VPN Group goes from .33 to .63 .

I don not understand why the ASA always wants to take the .41 However, even if no one else is logged in via VPN .
No matter which one of the 3 users I take, the ASA always wants to assign the .41 .
For all the other users that are having no problem, it assumes a different IP from the pool.

I recreated the pool, created another pool and assigned that pool, I rebootet the ASA. No luck.
Also did a "clear arp".
No improvement .

Ideas ?

As I said, all other VPN groups and users have no problems.

ASA 5525 , v9.1.2

Thank You!
1 Reply 1

Problem solved.

The User is only allowed to be in one of the VPN-Groups in the ActiceDirectory.

Those 2 problem-users where in two VPN-groups.

So, problem fixed.