Well we resolved the issue. We have an ASA in our environment with basic threat detection enabled. When doing a packet tracer on the ASA the client experiencing the issue was Shunned in Phase 3. When looking at the policy we have excluded subnets from the threat detection with auto recovery after 3600 seconds (1 hour). Once we added that in the policy we have not had the issue occur again.
... View more