Cisco Cisco ASA 5555-X Adaptive Security Appliance - No Payload Encryption 문제 해결 가이드

Contributed by Vibhor Amrodia, Cisco TAC Engineer.
Oct 22, 2013

Introduction
Prerequisites
     Components Used
Problem
Background Information
     Recommended Action
Solution
Related Information

This document describes how to troubleshoot the error mesage, "The maximum tunnel count allowed has been
reached", when you configure a Site−To−Site VPN on the Multiple Context Adaptive Security Appliances
(ASA) 9.x.

The information in this document is based on ASA Software Version 9.0 and later. This version introduced
Site−To−Site VPN configuration in multiple context mode.

The information in this document was created from the devices in a specific lab environment. All of the
devices used in this document started with a cleared (default) configuration. If your network is live, ensure
that you understand the potential impact of any command.

When you attempt to bring up multiple Site−To−Site VPN tunnels on the ASA, it fails and generates the
syslog message "The maximum tunnel count allowed has been reached".

The specific syslog message is below:

%ASA−4−751019: Local:<LocalAddr> Remote:<RemoteAddr> Username:<username> Failed to obtain a <licenseType> license.

<LocalAddr> − Local Address for this connection attempt

• 

<RemoteAddr> − Remote peer address for this connection attempt

• 

<username> − Username for peer attempting connection

• 

<licenseType> − License type that was exceeded (Other VPN or AnyConnect Premium/Essentials) 

•