• Home

Tags

Archives

• January 2012
• December 2011
• November 2011
• October 2011
• August 2011
• May 2011
• April 2011
• March 2011

Categories

Select Category Bash Cell phone cisco EMC Fonts Google harddrives howto Kernel Linux Mouse Redhat Scientific linux Scripting Tech Terminal tty Uncategorized VmWare X

Recent Posts

• Fixing EMC VNX 5×00 naviagent not starting failover
• Howto remove errors alerts in EMC VNX unisphere GUI
• Fixing cisco %ASA-3-201008: Disallowing new connections

Search for:

Links

• 100 Intérêts
• Gulselinux

Fixing cisco %ASA-3-201008: Disallowing new connections

So you are using TCP logging and the ASA is shooting out error %ASA-3-201008, and blocking your network traffic.

Accorting to cisco documentation the ASA will deny new sessions if you use TCP logging and that the syslog server is unreachable

If you are using TCP as the logging transport protocol, the ASA denies new network access sessions as a security measure if the ASA is unable to reach the syslog server, if the syslog server is misconfigured, or if the disk is full.

UDP-based logging does not prevent the ASA from passing traffic if the syslog server fails.

See the link

Set “logging permit-hostdown

Comments are closed.