Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
642
Views
0
Helpful
1
Replies

IPSec LAN-LAN Tunnel b/w 3005 and CheckPoint

mnlatif
Level 3
Level 3

‎01-09-2004 11:47 AM - edited ‎02-21-2020 12:59 PM

Hi,

We have IPSec LAN-LAN tunnel configured between a Cisco VPN3005 and Nokia CheckPoint. However ocassionally the below message is showing up in the logs

(x.x.x.x = IP Address of Nokia CheckPoint)

++++++++++++++++++++++++

17161 01/05/2004 08:46:12.440 SEV=3 AUTH/5 RPT=16 x.x.x.x

Authentication rejected: Reason = Simultaneous logins exceeded for user

handle = 730, server = (none), user = x.x.x.x, domain = <not specified>

+++++++++++++++++++++++

Why would this message come up for a LAN-LAN Tunnel ? There is No Login from this peer, it is Not a Remote Access Connection.

We started seeing this message, since we upgraded the Concentrator from 4.0.1.A to 4.0.4.A.

Is it possible that Upgrade corrputed some of the database ?

Should i re-configure the Tunnel again ?

Regards,

\\ Naman

Labels:
0 Helpful
1 Reply 1

mikegallagher
Level 1
Level 1

‎01-12-2004 08:28 AM

On the 3005, go into:

Configuration>User Management>Groups

and find the L2L tunnel you are having the issue with and click "Modify Group". Click the "General" tab and make sure "Simulanteous Logins" is >0.

HTH,

Mike

0 Helpful
Customers Also Viewed These Support Documents