Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
202
Views
0
Helpful
1
Replies

Large Network Lists and Many IPsec Sessions

mmedwid
Level 3
Level 3

‎11-18-2002 09:21 AM - edited ‎02-21-2020 12:10 PM

Has anyone experienced a problem with dropped individual IPsec sessions within a lan-2-lan connection if you are using network lists which necessitate several different IPsec session within the connection? For instance say your have a LAN-to-LAN connection with three subnets defined for one side of the tunnel and 12 subnets on the other side of the tunnel. This would result in having one IKE session for the and several different IPsec sessions each with its own session ID. What we are finding is that after running okay for days or weeks - one of those IPsec sessions might disappear and traffic between the affected subnets won't pass. I'm speaking of a PIX to a CVPN3000.

It seems like the problem does not crop up when you have a very simple setup like a spoke office with one subnet which tunnels a few subnets to a CVPN.

Labels:
0 Helpful
1 Reply 1

kdurrett
Level 3
Level 3

‎11-18-2002 09:39 AM

I've seen problems like this in some older codes. Specifically with the pix. You running 5.3? Make sure you update your software on both devices.

Kurtis

0 Helpful
Customers Also Viewed These Support Documents