08-31-2015 09:47 AM
We have 14 Site-to-site connections configured on the main site ASA. We recently upgraded our license to Security Plus and now have 25 available "Total VPN Peers". However, the main site ASA is still only allowing 10 site-to-site connections at a time. If I log one site out, the next one immediately connects, but it never allows over 10 connections.
Any thoughts?
08-31-2015 02:34 PM
Look if you have the following command configured. If yes, remove the command:
sh run | i vpn-sessiondb max-other-vpn-limit
08-31-2015 02:43 PM
Thanks Karsten, but doesn't look like that command is configured
08-31-2015 03:15 PM
Are you using IKEv2? Then there is also the command "crypto ikev2 limit max-sa XX".
And there is a different version of the above command that can also limit the sessions: "vpn-sessiondb max-session-limit".
08-31-2015 03:23 PM
This particular ASA is still on 5.2, so no IKE2, just IKE IPsec
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide