Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
737
Views
0
Helpful
4
Replies

IPSEC VPN timeout

Mohd Khairul Nizam
Level 4
Level 4

‎06-08-2015 08:38 PM - edited ‎02-21-2020 08:16 PM

i create ipsec vpn between ASA 5505 and RV042. Tunnel is UP and i can ping from inside both client.

But during ping, there is timeout in between.

is there any explanation why the timeout happen? or is it if IPSEC VPN is up, it must be no timeout happen unless the Internet is down?
any idea guys?

Labels:
Preview file
2617 KB
0 Helpful
4 Replies 4

Vishnu Sharma
Level 1
Level 1

‎06-09-2015 01:13 AM

Hi Mohd,

 

If I understand your issue, you are facing issues with ping drops when sending traffic through the VPN tunnel. Could you please check of you get drops when you ping from ASA5505 to RV042? If you are getting timeouts for the traffic not going through the tunnel then you can expect the same through the tunnel.

If you are not getting any timeout when pinging from ASA to RV, then you can do some tweaks on the ASA to improve the performance. You can refer to the link: http://www.cisco.com/c/en/us/support/docs/security/asa-5500-x-series-next-generation-firewalls/113393-asa-troubleshoot-throughput-00.html

Else contact your ISP to check why there are drops through normal traffic.

 

 

Thanks,

Vishnu 

0 Helpful

Mohd Khairul Nizam
Level 4
Level 4
In response to Vishnu Sharma

‎06-09-2015 02:58 AM

Hi Vishnu,

i have tried

from ASA, ping to the WAN interface of RV (without tunnel), im getting a timeout also, does that mean even without tunnel, there is a timeout ? nothing to do with ipsec

ciscoasa# ping 211.24.xx.x repeat 1000
Type escape sequence to abort.
Sending 1000, 100-byte ICMP Echos to 211.24.x.x, timeout is 2 seconds:
!!!!!!!!?!!!!!!!?!!!!!!!!!!!!!!!!?!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!?!!!!!!!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!!!!!!!?!!!!!!!!!!!!!?!!!!!!!!!!!!!?!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!!!!!!!!!!!!!!!!!!?!!!!!!!!!!!!?!!!!!!!!!!!!!!!!!!!!!!!!!?!!!!!!!!!!
!!!!!!!!!!!!!!!!!!!!!!!!!?!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!?!!!!!!!!!!!!!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
?!!!!!!!!!!!!?!!!!!!!?!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!?!!!!!?!!!!!!!!!!!!!!!!!!!!!!!!
!!!!!!!!!!?!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!!!!!!!!!!!!!!!!!!
Success rate is 98 percent (982/1000), round-trip min/avg/max = 50/117/590 ms
ciscoasa#

 

0 Helpful

Vishnu Sharma
Level 1
Level 1
In response to Mohd Khairul Nizam

‎06-09-2015 03:26 AM

Yes!! If cleartext traffic is getting dropped then encrypted traffic will also drop. Please speak to your ISP to resolve this issue.

Let me know if this answers your question.

 

Thanks,

Vishnu

0 Helpful

Mohd Khairul Nizam
Level 4
Level 4
In response to Vishnu Sharma

‎09-05-2015 08:43 PM

turn out there is double NAT from my adsl modem that disturb the connection.

Case closed

0 Helpful
Customers Also Viewed These Support Documents