Cisco ASA Audit Event: 109040

109040: User exceeded auth proxy rate limit of 10 connections/sec

Cisco ASA is a security device that provides the combined capabilities of a firewall, an antivirus, and an intrusion prevention system. It also facilitates virtual private network (VPN) connections. It helps to detect threats and stop attacks before they spread through the network.

Message: %ASA-4-109040: User at IP exceeded auth proxy rate limit of 10 connections/sec.

Event 109040 is generated when a user at a particular IP address exceeds the authentication proxy rate limit of 10 connections per second. The IP address of the user is specified in the message. 

How could you resolve this situation?

Limit the number of cut-through proxy authentication attempts from users.

Cisco ASA Auditing Tool

EventLog Analyzer is a comprehensive log management software with which you can centrally collect, analyze, and manage logs from all the different log sources in your network. You also get reports and alerts on your network security, making it a power-packed IT security tool.