Guest

Preview Tool

Cisco Bug: CSCsy80386 - ASDM: Disabling 1 L2L ipsec connection profile may also disable others

Last Modified

Nov 10, 2016

Products (1)

  • Cisco Adaptive Security Device Manager

Known Affected Releases

6.1(5)

Description (partial)

Symptom:

With ASDM when there many site to site VPN  connection profiles defined 
which share the group policy, if you disable one site to site 
VPN connection profile, then IPSEC will get disabled for all site to site
VPN  connection profiles (tunnels) that share the same group policy. 

This is confusing for customers and can cause a outage, where
disabling one site to site  vpn tunnel, can disable all other IPSEC 
vpn tunnels if they share the same group policy. 

This bug is specifically for the site to site  VPN connection profiles. 
Clientless and remote access connection profiles are addressed
by bug CSCsy58573.

Conditions:

1) When multiple ipsec site to site  VPN connection profiles use
   the same group policy
2) One of the site to site VPN connection profiles is disabled
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.