10-31-2006 12:04 PM - edited 02-21-2020 02:41 PM
I have an ASA5540 that is in use as a VPN endpoint. I have both LAN to LAN and remote access VPN clients connecting to it. For the past 3 months it will randomly just drop all VPN packets. All other traffic will pass as it is supposed to, but no VPN traffic. I have to completely reload the ASA to revive VPN connectivity.
I was running a code version 7.2.1 but then updated to an interim release 7.2.1 (19) hoping to resolve the issue. No luck. My syslog shows an error message whenever it happens:
CRYPTO: The ASA hardware accelerator encountered an error (Unknown Error, code= 0x3B) while executing the command Process IPSec Outbound Packet (0x11)
11-06-2006 01:45 PM
Try this:
Check ForceKeepalive in your .pcf. You may add the following line to the bottom of the .pcf file if its not there:
ForceKeepAlives=1
Try this link:
03-07-2007 12:13 PM
Hi,
I'm having the exact same problem on my ASA5510. Did you ever figure out the cause or fix it?
Thanks,
Mark
03-07-2007 03:19 PM
Seems like a bug.
Open a TAC case.
-Kanishka
03-07-2007 03:24 PM
I did. And it is a bug: CSCsd43563
Mark
03-16-2007 09:59 AM
Not sure if you already knew or not, but there is a new version which is supposed to contain a fix for this bug out now.
asa722-14-k8.bin
03-16-2007 10:05 AM
Yup, they sent me a pre-release of 7.2.2.12 which fixed the problem.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide