Buy or Renew
Buy or Renew
NEW! Stay up-to-date on Cisco Secure Access: Software Release Notes and Announcements
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
376
Views
0
Helpful
1
Replies

problem with vpn connexion from certain sites..

Michel Humphreys
Level 1
Level 1

‎01-06-2012 07:24 AM

Hi,

i've started having issues with vpn connexion not working. My clients use anyconnect cisco client. My firewall/vpn box is a ASA5540.

I've got multiple remote office equiped with asa5505 with remote office connection to main 5540. For a specific reason(wich is too long to explain) i have users in these sites that use software client to access specific ressources in main office. These users (in 2 sites out of 9) have started to not be able to connect with anyconnect client. They do not even get response from asa5540. and in the syslog i get this :

Deny TCP (no connection) from 11.11.11.11/29361 to 22.22.22.22/443 flags FIN ACK  on interface outside

and/or

Deny TCP (no connection) from 11.11.11.11/29361 to 22.22.22.22/443 flags FIN PSH ACK  on interface outside

When i ask them to connect to our backup ASA5540 in our second datacenter.. teh same clients work perfectly(this should eliminate the problem being on the local ASA5505)

I'm pretty much stumped at this point outside rebooting my asa5540 to clear everything ... i have no other options or leeds ..

thanks

Labels:
0 Helpful
1 Reply 1

ajay chauhan
Level 7
Level 7

‎01-06-2012 11:17 AM

Do you have multiple path for internet ? Please post your configuration.

Thanks

Ajay

0 Helpful
Customers Also Viewed These Support Documents