Solved

Cisco FW VPN 5510 - SSL question

Posted on 2009-04-10
8
2,530 Views
Last Modified: 2012-05-06
Hello, this would probably be my first post after x amount of years here. I have a question. There seems to be something preventing our ssl portal from letting users log in. I have attached a screen capture of what happens when the correct credentials are inserted.

The problem is outside our network and has occured twice. The only known remedies that have come close to my issue is to reset/restart our ASA. The last time this happened I didn't get around to it and was self-remedied.

I've already tried logging into the ASDM console to see if there is a setting for updating the session management database but I don't see anything up front.

Im not to experienced in troubleshooting the cisco 5510 firewall. So i figured I'd drop a line here to see what many of you thought. The application is in a live environment. Any realistic suggestions and steps will be taking into consideration.

If there is anything else you need from me to assist in this please let me know.

Thank you in advanced.

"Unable to update the session management database"
heryougo.JPG
0
Comment
Question by:zenki_fc
  • 4
  • 3
8 Comments
 
LVL 77

Expert Comment

by:arnold
ID: 24116635
At the time of the error were there the MAX number of users connected?
I.e. a reboot of the device kicks all the existing sessions.

I.e. how many simultaneous VPN connection does your ASA support/licensed for?
0
 
LVL 1

Author Comment

by:zenki_fc
ID: 24116733
If I am no mistaken it can take up to 50 users at once. I highly doubt that all 50+ users were on at one point in time. But that's a good question. I will go ahead and reset/kick any users logged in and try again.
0
 
LVL 77

Accepted Solution

by:
arnold earned 500 total points
ID: 24116864
0
PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

 
LVL 1

Author Comment

by:zenki_fc
ID: 24130400
Hmm... we have 50 licenses so I don't think that exceeding the amount of users is the problem in this case. The issue was self resolved again the following morning (Saturday). Is there some sort of temporary/cache files that have to be cleared?

Any other ideas?
0
 
LVL 77

Expert Comment

by:arnold
ID: 24131127
Are there any errors/notives logged dealing with why access was being denied?
What are you timeouts set to?  I.e. how long is a session state maintained?
How many individuals can establish a VPN connection?  trying to see whether the 50 was met not with 50 simulteneous access but enough that logged in. and logged out within the timeout period. I.e. similar to an ARP cache that will take some time prior to the ASA clearing a session ID.
how do you control access to the SSL VPN?  Is it based on local auth or you have external Radius auth?
0
 
LVL 1

Author Comment

by:zenki_fc
ID: 24149697
Hey Arnold, thanks for your input. Since it's up and running right now I won't be able to dedicate as much time to it due to other deadlines and projects that are currently in motion. I will have to work with this later this weekend and keep you posted on any findings.

Thanks for being in touch and quick on responses. Have a great day.
0
 
LVL 1

Author Comment

by:zenki_fc
ID: 24818561
I can't seem to find another possible culprit to this. The only item that came close to this was the limited amout of users that can be connected.

Wanted to thank you all and I apologize for the delay. It was mostly on my part trying to troubleshoot it, but it hasnt come back and no one has reported this error since.
0

Featured Post

Free Tool: Subnet Calculator

The subnet calculator helps you design networks by taking an IP address and network mask and returning information such as network, broadcast address, and host range.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

New Relic: Our company recently started researching several products to figure out what were the best ways for us to increase our web page speed and to quickly identify performance problems that we may be having. One of the products we evaluated wa…
This is an article about my experiences with remote access to my clients (so that I may serve them) and eventually to my home office system via Radmin Remote Control. I have been using remote access for over 10 years and have been improving my metho…
This video teaches viewers how to create their own website using cPanel and Wordpress. Tutorial walks users through how to set up their own domain name from tools like Domain Registrar, Hosting Account, and Wordpress. More specifically, the order in…
This video teaches users how to migrate an existing Wordpress website to a new domain.

840 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question