Cisco :: ASA Flagging Its Own Packets As Spoofed?
Apr 6, 2011Why might an ASA flag packets originated from itself as having a spoofed address?
Log messages are ASA-2-106016
ADVERTISEMENT
Cisco :: RTP Packets Out Of Sequence
Feb 3, 2013I've no experience in VoIP and been ditched with looking at an IP trunking problem on our network.The users where getting dead lines or silent calls, but it seems after re-seating IP trunking card here and there around the network a few times, all is settled to normal. Unfortunately it's a third party that look after the majority of the telephony, and as they can't figure out why this happens they often say it must be a problem with the data WAN it traverses.So I started trying to figure something out, I have IPSLA monitoring setup in Solarwinds on most of the routers and all looks well from that aspect; MOS is 4.34 and Jitter is only 1ms at worst. I've taken a wireshark packet capture of the IP trunk by mirroring the port on the switch at a main site where I've been told a lot of calls are routed through. Inside wireshark I used the 'telephony> voip calls' tool and decoded all the calls. The output is showing most calls have 'Out of Seq' and 'Wrong Timestamp' at around 25-50%. Although these calls seem fine otherwise, and I took this capture whilst the fault was not occurring. I know I need to capture next time when the fault is occurring, but this is what I have for now.How can i fix this or even start to troubleshoot further?
p.s- each site has two routers running GLBP to the WAN, over two ISP locations. I read something about having consistent routing to avoid packets arriving out of sequence, but haven't found anything yet to say this is how I can/should do that.
No Sent And Received Packets?
Feb 3, 2011My sent packets are 0 and also received packets. What can I do?
View 3 Replies View RelatedNo Packets Being Received On Pc
Jul 20, 2011I use a wireless adapter to connect to our home network but its stopped receiving packets but is sending them. It has worked fine for ages now it just randomly stopped. The network works with everything else (laptops, Xbox and iPods) but my pc wont receive anything. Also our home connection has no password as we live in the middle of nowhere.
View 8 Replies View RelatedPackets Sent But Not Received?
Oct 29, 2011I am having a really hard time with a computer that has a wireless connection. Specifically the internet keeps going out. The computer info is that of the affected computer and not the host computer to which the router and modem are connected.
View 2 Replies View RelatedSent Packets Are More Than Received
Sep 9, 2012How come my packets sent are so high.
View 3 Replies View RelatedCisco :: VPN Client Discarded Packets
Jul 4, 2011I can connect to it fine and access everything behind the VPN. I have a Windows 7 machine 32 bits. He can connect to the VPN just fine but not access anything behind it, he is running Windows 7 64-bits. This is not a new setup, the VPN has been working before. If I debug ISAKMP and IPSEC in the ASA I see nothing out of the ordinary. The only thing I see is that the VPN client on his machine is showing that the counter for discarded packets is increasing. This is Ciscos explanation to discarded packets. "Packets discarded—The total number of data packets that the VPN Client rejected because they did not come from the secure VPN device gateway." So it seems that the client does not believe that the packets are from the ASA. I have no idea why that would be and what could have changed that made a functioning VPN turn into a non functioning one. He can not remember doing any major installs or something like that which could mess with the client. We uninstalled the version he was using and installed a slightly newer version but it made no difference.
View 1 Replies View RelatedCisco :: How To Calculate Fragmented Packets
Jun 5, 2011An IP packet of size 1500 bytes passes through two network segments before it reaches its destination. The header size of this packet is 20 bytes. The maximum size of an IP packet in the first intermediate network (its MTU) is 1024 bytes, and that in the second network is 576 bytes.Explain how the IP packet described above would be fragmented into smaller parts in a router, paying particular attention to the flag bits and to the fragment offset field in the header.
- Fragmentation and reassembly needs to break a data-gram into an almost random number of pieces that later can reassembled.
- It uses the identification field to ensure that fragments of different datagrams are not mixed.
- IP packet of 1500 bytes comprises 1480 bytes of data and a 20-byte header.
- In the first intermediate network, the packet size of 1024 bytes allows for 1000 bytes of data plus a 20-byte IP
header.[code]
Cisco WAN :: Possible To Pass 802.3 Packets Over A L2TP
Jun 13, 2013Is it possible to pass 802.3 packets over a L2TP?If so, how would the tunnel differ from a normal L2TP?
View 1 Replies View RelatedCisco WAN :: Way To Capture Packets Getting Punted To CPU In NPE-G2?
Jan 10, 2011While troubleshooting high cpu due to interrupts on platforms like 6500 or 7600 we can capture the packets getting punted to the CPU using netdr or on 4500 I think we can even use monitor session. But is there a way where we can capture/sniff packets reaching the CPU on a 7206vxr with NPE-G2?
View 6 Replies View RelatedCisco WAN :: 3945e Udp Packets Are Dropping
Dec 13, 2012I have a NAT setup. Some of my udp packets are dropping. How to find more about the NAT to find whether it missed anything or not. the router is 3945e. [code]
View 3 Replies View RelatedCisco WAN :: 877 - Policy Map Not Marking Packets
Aug 22, 2011I have a weird issue with a QOS policy that I have implemented. Details are below.
This is basically the policy I have created. It is running on a Cisco 877 router (running Advance IP Services 12.4). The internet connection is an Internode ADSL service.
class-map match-any VOIP
match access-group name VOICE-OUT
!
!
[Code]....
Cisco Application :: ACE RST Packets With 6509
Aug 15, 2012I have ACE10 Module in my switch core 6509, my context "Proxy" was criated for balance connections to Forefront TMG Servers, this balance needs original client IP Address connections end to end in the solution.
My problem is: The clients are complaining of slowness connection to the internet, i captured the traffic in the ace capture feature and i see some RST packets and severals checksum error packets in pcap file.
The topology is:
Client -> ACE VIP VLAN 81 -> RSERVERS VLAN 80
Vlan 80 is in L2 mode(no interface vlan in the switch core 6509, route occurs through the ace appliance).
The IP address 10.96.200.6 is the gw for rservers.
[Code]...
Wireshark :: It Says No Packets Are Being Captured
Dec 18, 2011Ive just downloaded wireshark just to mess around and ive noticed that even when ive got nothing open its still capturing packets. It gives me a choice of interfaces i want to choose to monitor and i would of thought it be "Realtek PCIe Family Controller" as this is normally the default one (im using wireless) but its saying no packets are being captured from this interface its the "Microsoft" Interface thats capturing the packets. Ive attached a screenshot, i know this isnt nothing bad but was just wondering 1) why isnt my Realtek PCIe interface capturing anything?
View 5 Replies View RelatedSending But Not Receiving Packets?
Jun 26, 2011One Day the internet is fine the next day The Internet Stopped working. The problem is my pc is sending packets but not receiving any i though it was a bug or something so i restarted my pc after i restarted my pc the internet was working fine until a couple of minutes passed it stopped receiving packets again.i tried resetting the modem but nothing worked.I tried winsock fix or resetting TCP/IP and stuff but nothing workscause its starting to frustrate me.
View 14 Replies View RelatedSending But Not Receiving Packets
Sep 26, 2011Our computer is sending but not receiving packets. We've tried 3 different wi-fi adapters, and that wasn't the problem. We have no idea what's wrong? It won't pick up any wireless signals by the way, and it works fine while connected via Ethernet.
View 5 Replies View RelatedLAN Connection Not Receiving Packets
Aug 7, 2012I have a home network that does not connect to the internet, but which I use to play games on, or did before this issue happened by.For years my PC's and friends ones had been able to connect into the network with little or no problems, but a few months ago my tower PC just stopped picking anybody or anything up on the network and I have tried tons of different resolutions to solve this.Anyway, the other day I bought a new HD and installed XP SP3 again on it, and for about fifteen minutes I could connect to my Vista Laptop and share files and play games, then it stopped.Next day the same again and off and on till now when its been down for the last week.I have also now bought a new network card - no difference - and disabled the on board network card through the BIOS - no difference.I have done a Winsock repair, replaced automatic IP addresses with manual ones, and countless other remedies which have not solved diddly.
View 14 Replies View RelatedComputer Does Not Receive Packets
Jun 6, 2011I have connected the computer to the internet a multitude of ways, and no matter how i do it, it always can not receive packets. It is sending packets though.I have tried connecting it directly to the modem, with different wires, through a router, through a network card... I'm pretty much at a loss, im not an expert by any means but im not computer illiterate either. Chances are this is a simple fix... My other computer (the one im on) works fine with both cords, connected directly, and through the router to the modem.
View 2 Replies View RelatedEthernet Working But No Packets Getting Sent?
Feb 1, 2012Basically a while ago last year some time in December my desktop got turned on one day and the internet wasn't working. I tried using my wireless to connect but even that was stuck on "acquiring network address". Ive played around with it abit since then and now my etherent cord shows up as connected but when I go into properties it says no packets getting sent / received. In device manager all my network adapters are cool and dont have any "!" next to them.Ive also tried the cord in my laptop and it works cool.
View 3 Replies View RelatedCisco :: Find Missing Packets With Wireshark?
Nov 6, 2012I am capturing at 2 different locations and I need to find packets that are getting dropped between the 2.
I have done all the merging and everything needed for this in wireshark but because the mac address changes 1/2 way to me all the packets are coming up as lost
is there anyway to remove the MAC address from the captures or as a field it looks at?
Cisco WAN :: 6506-E Randomly Not Forwarding Packets?
May 3, 2011I have a 6506-E here that randonly drops packets and I'm trying to find out why.
When debugging ip packets (debug ip packet 52), I found a whole lot of these:
May 4 22:42:14: pak 5007BF54 consumed in input feature , packet consumed, MCI Check(55), rtype 0, forus FALSE, sendself FALSE, mtu 0May 4 22:42:14: pak 5008C488 consumed in input feature , packet consumed, MCI Check(55), rtype 0, forus FALSE, sendself FALSE, mtu 0May 4 22:42:14: pak 46A3E474 consumed in input feature , packet consumed, MCI Check(55), rtype 0, forus FALSE, sendself FALSE, mtu 0
May 4 22:42:14: pak 5007624C consumed in input feature , packet consumed, MCI Check(55), rtype 0, forus FALSE, sendself FALSE, mtu 0
The problem with this is, today's date is the 5 May. The clock on the device shows the right time, but these debugs aren't.
Cisco VPN :: 5510 - L2L VPN Not Passing Data Packets
Apr 17, 2012I have a 5510 that has 2 site to site vpn's that aren't working. Phase 1 and 2 are up, but no data packets are being sent. This just started randomly 2 days ago after working for weeks.
View 6 Replies View RelatedCisco WAN :: 7206 - Cannot See Packets Being Accounted If Destination IP Down
Jun 17, 2013One of end costumers is trying to configure IP Accounting on 7206 running version 12.4(4)XD8,The issue we are having is that while the physical interface is up (the sub interface is part of a metro line which is directly connected) we dont see packets being accounted if the destination IP is down.
View 2 Replies View RelatedCisco VPN :: VPN To Juniper ISG 1000 Dropping Packets
Aug 1, 2012I have ASA 5510 with 8.4 connected to ISG 1000, when traffic is passing the VPN tunnel is working fine, when the traffic stops, ASA will drop the packet but the VPN tunnel on ISG still up .When new traffic started from ISG side, it will drop, as the tunnel is not up on ASA side.
View 2 Replies View RelatedCisco Firewall :: ASA5505 Dropping Packets
Apr 30, 2013 I am having an issue where the ASA is dropping packets on the vlan interfaces. I have it as a dedicated router/firewall for a 100mb connection .
Vlan1 is the internal networkVlan2 is the network to cable modem
Eth 0/1 is connected to a 2960G switch with hard coded 100mb Full Duplex at each end, this is the inside interface. Eth 0/0 is the connection to the cable modem, this is the outside interface, set at auto at both ends.
Im getting on the vlans eg. 51253 packets dropped however network traffic isnt impacted and everything runs fine, as well as 46532 switch ingress policy drops.
Example;
ciscoasa# sh int vlan1Interface Vlan1 "inside", is up, line protocol is up Hardware is EtherSVI, BW 100 Mbps, DLY 100 usec MAC address 70ca.9b36.ab80, MTU 1500 IP address 10.x.x.x, subnet mask 255.255.255.0 Traffic Statistics for "inside": 43250588
[Code]......
Cisco WAN :: 800 Router Dropping SMTP Packets
May 29, 2012We have a cisco 800 series router between the internal network and the WAN. the problem is we are unable to receive some of our mail due to dropped packets by our router. the conversation between the two servers stops at the point were our server responds with the command 250 2.1.5 user@mydomain.com | 354 Start mail input; end with . i was able to trace the packet, using Packet Export, on the internal interface but not on the external interface. Also i have noticed that the external interface has about 160,000 unknown protocol drops while the internal interface has 0.
Is there anyway to find out way the external interface is dropping the packets.
Cisco :: 194 ToS Filed Change In Net Flow V9 Packets
Aug 28, 2011Recently we have configured few of our routers to export FNF (Flexible NetFlow), some of our router are exporting NetFlow V9 packets with fields as mentioned in the NetFlow V9 RFC. We noticed that one router is exporting NetFlow V9 with the field value different from RFC. I have attached the screen shot which shows that Field 194 is assigned for TOS. Whereas according RFC it is 5. Is there any specifc reason begind this or this is an IOS related issue.
View 1 Replies View RelatedCisco Wireless :: AP WAP4410N Packets Are Being Dropped
Aug 20, 2012I am using WAP4410N access point to connect 5 computer to the network. Recently the wireless network is very bad; pakets are often being droped, very high reply times. I have upgraded to the latest firmware tried to change configuration with no use i even tried the default configuration. I assumed that there's interference. I tried another AP ( linksys one) and things seems to be okay. what would be the problem with AP?
View 4 Replies View RelatedCisco VPN :: 8.21 / Packets Dropped At Encryption Stage?
Apr 27, 2013I am truly struggling with the changes after 8.21. I am trying to get a VPN up between two sites. This is the B end, I am sure there are a bunch of problems in the other end too. Eg. the tunnel NAT does not have the right priority 1.when I establish the tunnel I get this:
3 Sep 01 2008 11:23:37 Tunnel Manager has failed to establish an L2L SA. All configured IKE versions failed to establish the tunnel. Map Tag= outside_map. Map Sequence Number = 1.
# packet-tracer input inside tcp 10.2.32.11 80 10.1.1.10 80
Phase: 1
Type: ACCESS-LIST
Subtype:
[code]....
Cisco WAN :: 3725 / The Order In Which Packets Are Processed
Nov 12, 2012I am implementing traffic export on the WAN interface of my 3725 router. I use a dialer interface for PPPoE which is applied to the Fa0/0 interface. This dialer WAN interface has Zone Based Firewall, NAT Outside, ACLs applied to it, as well as IP Traffic Export for an IPS. In what order would each of these items process a packet? In other words, is the order something like ZBF, ACL, IP Traffic Export, then NAT? How would QoS fit into something like this as well? I am asking because I am wondering how much processing the packets receive before they are mirrored over to my IPS.
View 1 Replies View RelatedCisco Switches :: SG300 Is Dropping Packets?
Apr 10, 2012We have a customer who we sent to Cisco to replace some aging Dell switches. They purchased 5 SG300-52’s for 2 different networks. Their production LAN has 2 “live” switches and 1 spare. The 2nd, a development LAN has 1 switch and 1 spare. Their primary production SG300-52 has GE1-8 VLAN’d off as VLAN2 for public IPs. The untrusted (WAN) interfaces of 2 x ASA-5510’s, 1 x ASA-5505, and 2 x RV082 v2’s are connected to GE2-6. GE1 is the uplink to the co-location center’s Cisco switches. GE7 & 8 are spare ports. Each SG and device port is hard coded for 100/Full.
One of the ASA-5510’s and the ASA-5505 maintain a site-to-site VPN (the development LAN used to be in a different facility hence the VPN). Recently the developers have stated the performance is horrible. I noticed ping traffic loss from PCs on the dev side to servers on the production side in the order of 20-30%. I assumed it was a VPN issue so I opened a ticket with Enterprise TAC (all the ASAs and the SGs have either SmartNet or extended support contracts). TAC determined the problem happened even if you ping from inside the ASA to the untrusted side of the other ASA thus eliminating the VPN as the culprit.
The 2nd ASA-5510 has the AIP module and was not even live until this weekend. Turning it up and giving it a basic config returned the same results. #ping x.x.x.x repeat 100 will drop 20-40 packets. I have no security enabled on the SGs and even tried using the spare SG300-52 this weekend in place of their primary with the same result. I’m to the point of returning one of the Dell switches to production, but this cannot be a good sign. I’m also a bit frustrated that I’ve yet to figure out how to get Cisco Enterprise to speak with Cisco Small Business on this. The customer has over $10k invested in Cisco equipment and Cisco isn’t jumping in to figure this out.
The latest rep wants a packet capture from the SG300’s VLAN2 but there are no PCs there to do this with and the manual doesn’t even talk about doing this. How we can do this as well as get the 2 divisions working together to fix this? BTW, the RV082’s exhibit the SAME exact problem. I can ping from ANY device on VLAN2 to any other device and drop packets. Copying a simple 1MB file over the VPN can take minutes where it should take 1 second. I can reproduce this for 24/7.
Cisco WAN :: 6xCat375V2 Stack - Losing Packets?
Apr 20, 2013We'd had 5 switches in the stack and everything was ok. but then we connected a new 6th switch so I can see periodical short loosing packets. It happened on many hosts connected to these stack at different time. Cpu load is ok and no any errors in logs. Any others debugs?
(From my host)
ping -t 10.8.8.xx
[...]
Reply from 10.8.8.xx: bytes=32 time<1ms TTL=127
Request timeout
Request timeout
Reply from 10.8.8.xx: bytes=32 time<1ms TTL=127
[code]....
Cisco WAN :: 2801 - QoS - Packets Arriving On Interface
Feb 2, 2012In have a cisco 2801 router, fast 0/0 - internal network and fast 0/1 - internet
I have packets coming into fast 0/0 with dscp values ef, cs3, cs5, etc ... going the the internet thru fast 0/1. I only have basic configuration on fast 0/1 - no service-policy, no class-map, configured
Scenario: packets with dscp values arriving in fast 0/0 will exit fast 0/1 to the internet.
Question: Will these packets will be tagged the same dscp values when they exit to the internet?
Is this true or do I have make some configuration changes at my end to have this scenario configured.
class-map match-any VoIP-Signalling
match ip dscp af31
match ip dscp cs3
match ip dscp cs5
class-map match-any VoIP
match ip dscp ef