Hi,
we are currently experiencing exact the same problems. Cisco ASA HA
Cluster of 2x 5540 (Active/Standby) with OS 9.1.(2) and a Bintec RS232j
FW Version 9.1 Rev 10 Patch2 but other firmwares are also affected.
The are currently 24 active SAs to other Cisco devices without any
problem.
We use RSA Certificates for phase1 isakmp. Did you also use RSA for
authentication or PSK?
In my troubleshooting and debugging i see that DPD is still working,
bintec sends his DPD request and the ASA answers it with correct
sequence # but no traffic will pass the tunnel.
My call at Bintec/Funkwerk/Teldat war rejected cause 3rd party vendor is
involved, now i try to open a cisco call via our smartnet. In the
meantime every hint is welcome...
Thanks,
Bjoern
_______________________________________________
cisco-nsp mailing list cisco-nsp@puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/