Hello, it looks like NAT rules issue.
> 6 сент. 2016 г., в 1:55, Pavel Dimow написал(а):
>
> Hi guys,
>
> I have a big problem in my setup and I don't know how to solve it plus it's
> urgent :(
>
> I have ASA1 and ASA2 and L2L IPSec tunnel. Everything working fine. Now, I
> have vpn users th
without configs, how can anyone help you? Post sanitized pertinent
information. (ACLs, P1/P2 informations)
On Mon, Sep 5, 2016 at 3:55 PM, Pavel Dimow wrote:
> Hi guys,
>
> I have a big problem in my setup and I don't know how to solve it plus it's
> urgent :(
>
> I have ASA1 and ASA2 and L2L I
Hi guys,
I have a big problem in my setup and I don't know how to solve it plus it's
urgent :(
I have ASA1 and ASA2 and L2L IPSec tunnel. Everything working fine. Now, I
have vpn users that use l2tp over ipsec to dialin in ASA1. They tunnel all
traffic to ASA1. Everything is working fine, thay c
On 5/Sep/16 09:54, Lukas Tribus wrote:
>
> I don't know, I never tested that. But I'd imagine to see at least some
> improvements in the global table.
If you ever get the chance and time, would be good to hear the results
if you do test it.
Mark.
__
> That's pretty bad. I never had it that bad when I ran RP1's.
>
> Do you see any improvement if the session is in the global table?
I don't know, I never tested that. But I'd imagine to see at least some
improvements in the global table.
___
cisco-nsp
On 5/Sep/16 09:19, Lukas Tribus wrote:
> I have the full-table in a VRF on RP1, not only is there a shortage of RAM
> that you cannot upgrade (because RP1 is 32bit), the box is also extremely
> slow to converge. To program the full table into the FIB, the box takes about
> 30 minutes (while i
There are a lot of different ASR1k hw configurations out there, you will have
to be more specific.
Don't do it with RP1's though.
I have the full-table in a VRF on RP1, not only is there a shortage of RAM that
you cannot upgrade (because RP1 is 32bit), the box is also extremely slow to
conver