Cisco Firewall :: ASA5505 Dropping TCP Connections For Email With Attachments?
Jun 23, 2011
6Jun 24 201118:08:44209.85.213.5458623174.141.xx.xx25Deny TCP (no connection) from 209.85.213.54/58623 to 174.141.xx.xx/25 flags RST on interface outside I am getting this error in my asdm logs whenever I try to send an email with an attachment. Regular email go through fine. If I send a 1mb file it seems to go through after several attempts. If I send a 5mb file it might go through anywhere between 4-15 hours. It doesn't matter where I send from. Sometimes it will say ACK or RST ACK on interface instead of RST. The ASA is running 8.3.1 code. I have tried inspect ESMTP and removed it, tried sysopt connection timewait. I am at a loss.
View 1 Replies
ADVERTISEMENT
Sep 8, 2011
I can no longer open email file attachments, I get no message of the fault
View 1 Replies
View Related
Feb 16, 2012
My email acct. is not downloading (opening attachments). asking me to log into server with "login & Password" . Download Manager also opens at lower screen..
View 1 Replies
View Related
Apr 14, 2011
I have an old Win XP (SP3) desktop that just recently has a problems with attachments to emails. It simply won't allow me to open or save them.
I have tried both hotmail and btinternet.com (yahoo) emails. When I click on an attachment and choose either 'open' or 'save' the small grey box appears that usually shows the file action and download time info. However no info appears in the grey box and it just sits there (for hours). I have tried the same email attachment on another PC and it works fine so the problem is specific to this PC.
The file size is not a factor, as it fails to open attachments of only 100kb, nor is the file type (pdf). I can download large pdf files from a website with no trouble. the problem is just email attachments.
I tried switching off the Windows firewall, but this made no difference. The a/v is AVG9.0.
View 1 Replies
View Related
Apr 30, 2013
I am having an issue where the ASA is dropping packets on the vlan interfaces. I have it as a dedicated router/firewall for a 100mb connection .
Vlan1 is the internal networkVlan2 is the network to cable modem
Eth 0/1 is connected to a 2960G switch with hard coded 100mb Full Duplex at each end, this is the inside interface. Eth 0/0 is the connection to the cable modem, this is the outside interface, set at auto at both ends.
Im getting on the vlans eg. 51253 packets dropped however network traffic isnt impacted and everything runs fine, as well as 46532 switch ingress policy drops.
Example;
ciscoasa# sh int vlan1Interface Vlan1 "inside", is up, line protocol is up Hardware is EtherSVI, BW 100 Mbps, DLY 100 usec MAC address 70ca.9b36.ab80, MTU 1500 IP address 10.x.x.x, subnet mask 255.255.255.0 Traffic Statistics for "inside": 43250588
[Code]......
View 1 Replies
View Related
Jan 10, 2013
we have a Cisco 2901 as a router on a stick for several vlans. Everything on the segment routes fine and accesses the internet just as they should. The 2901 connects to an ASA5505 on port 0/1. Any host connected to the ASA5505 can access the internet, but can not ping into any of the vlans off of the 2901. The strange thing is on either segement of the network I can ping all of the gateways. What is even more strange is when I run wireshark from behind the firewall going into the 2901 I can not see the packet on another wireshark instance behind the 2901. However if I start a ping for a host host behind the asa I can see the packet in wireshark on the host, which I am trying to ping, hit the gateway.
View 15 Replies
View Related
Mar 5, 2012
I've got a problem on 887VAMG router. It drops important connections. As customer wants to have a firewall I created ACL and ip inspect rules ,but the router drops their connections to cloud and some websites are not opening. So I removed ACL and most ip inspect rules just to test if it effects that. And left only ip inspect http urlfilter. But still they have those problems, so I'm really stuck how to configure that firewall. The below some dropping connection review:
%FW-6-DROP_PKT: Dropping tcp session due to RST inside current window with ip ident 13968 tcpflags 0x5014 seq.no 1629693318 ack 1687676045
000049: Mar 6 11:49:21.324: %FW-6-DROP_PKT: Dropping http session <ip>:1766 69.171.242.12:80 with ip ident 26247 tcpflags 0x5018 seq.no 264144210 ack 642133125
000050: Mar 6 11:50:00.774: %FW-6-DROP_PKT: Dropping http session <ip>:4708 69.171.242.12:80 with ip ident 2425 tcpflags 0x5018 seq.no 3819869211 ack 1862176018
000051: Mar 6 11:50:52.515: %FW-6-DROP_PKT: Dropping http session <ip>:2599 173.194.34.90:80 due to RST inside current window with ip ident 22909 tcpflags 0x5014 seq.no 899975979 ack 92642430
[code]....
View 1 Replies
View Related
Apr 18, 2011
I just recently purchased a Cisco ASA 5505 ASA ver 8.2. I run a teamspeak server/ssh/dns and domain on the same server on the network. Before I switched to the asa, I have a regular DGL-4100 that ran with no issues. I have noticed that the connections are very unstable and disconnect frequently and when they do they take 1 to 5 minutes to be able to reconnect. I have done some cisco IOS but am fairly new to this. [code]
View 4 Replies
View Related
Feb 12, 2013
Trying to add inside routes on an ASA 5505 to point traffic to another gateway for other connected networks is resulting in the following error 6Sep 16200 819:13:5810601510.184.236.1265003810.170.54.1823389Deny TCP (no connection) from 10.184.236.126/50038 to 10.170.54.182/3389 flags RST on interface insideI believe the problem is due to the Asymetric tcp connection and the ASA is dropping the connection because it only see one half of the traffic.Is there a way we can stop the firewall dropping the TCP connections on the inside interface? i've tried removing the threat managment which didnt work.Annoying thing is were putting the ASA 5505's in to replace old Watchguard soho firewalls only the watchguards forwarded the traffic no problem at all.
View 1 Replies
View Related
May 25, 2011
I currently have the default inspection engine configured in my firewall to inspect http traffic. I noticed that the ASA will drop packets when visting legitimate websites. I've tried googling for a workaround but have been unsucsselful. How can I exclude some websites or IP's from being affected by the inspection engine?
View 1 Replies
View Related
Aug 8, 2012
I have a question about NAT behavior on FWSM 4.0. The problem is email server (Company A) cannot connect to email gateway (Company B) on the outside network and it randomly happen. I got this error from server guy "Detail: xlate has blocked the connection between A’s mail gateway and B’s mail gateway". It work fine again after clear xlate on firewall. [code]
1. How FWSM create xlate table like that? I mean it look like NAT0 for 158.137.21.26 but it doesn't has any nat rule for 158.137.21.26 on firewall.
2. What does it mean "connections 24" at the first of line? In the normal time, I only see the connections is 0 like the second line of xlate
3. After clear xlate global 158.137.21.26, the first line of xlate table is gone then email server can connect each other. Does is a bug on FWSM? or This is a normal NAT behavior of FWSM.
View 1 Replies
View Related
Jul 24, 2012
I have and office that the cable modem tends to go down on the weekend. Can i setup my asa to support a second provider so that if the one connection is slow for some reason, my users could connect to the second provider instead? they would both be used at the same time most the time.
View 3 Replies
View Related
Oct 28, 2011
A lot of the time webpages hang up and don't load.. errors out etc.. I keep unplugging the router and plugging it back in and this makes it a ton better for a little while.. however.. I can play games like BF3 on 64 man servers and not lag/spike/disconnect or anything.. I am baffled as to why I am having such issues with web browsing
View 1 Replies
View Related
Nov 23, 2011
I just set up a new DIR-601.Now, whenever I make a VPN or ssh connection, it gets dropped, always after about 3 minutes.
View 6 Replies
View Related
Mar 13, 2013
I just recieved a new RV180 yesterday and it will not connect to my switch. Router was updated to the newest firmware, reset to factory settings. I did change the ip and ip range. Router works fine with one computer attached direct. As soon as I connect my sf300-24P to it, the WAN and LAN lights all light up and then go out. Only the WAN will light back up. I have no connectivity to the router. I plug the laptop to the router directly and no LAN lights come on and can not see the router with arp -a.
View 6 Replies
View Related
Apr 25, 2012
I have my RVS-4000 configured using static IP addresses in the LAN configuration. The users use DHCP to get their addresses (for the most part, a couple may have static IPs set on the computer). I have the maximum number of DHCP users set to 1 to restrict the ability of people to log in to the system. That one address is locked down.
The internal address of the router is set to 182.168.2.1. It doesn't conflict with anything on my network. I have 35 static IPs. About half of them are uing IP Based ACL to limit their access time but that doesn't seem to bear any relationship to what drops off.
Almost daily one or more of the users will lose their IP address and a hard reset of the router is required. The user this happens to seems random and it may be more than one but seldom all of them. The network includes Windows7 (Home & Pro), a FreeNAS, Macs (Leopard and Snow Leopard), iPad, iPods, an iPhone and an AirPort Extreme used as a WAP (DHCP is disabled). The AirPort is plugged directly into the router and has a staic ip on the RVS-4000 but is set to DHCP. It seems to be the most common problem child.
View 3 Replies
View Related
Mar 6, 2013
I have 2 AP541N's set up using a WDS bridge, broadcasting a single SSID. I am using WPA-PSK for the bridge and WPA/ WPA2 and CCMP (AES) on the SSID. I only have around 75 (Mac, PC, iPad, iPhone and Android) devices that use wireless. Some are laptops that roam around from AP to AP, and are using LAN when they are not roaming. I have increased the roaming agressiveness on PC clients and this doesn't seem to have resolved the weak connection. At most, I have 50 clients trying to access the wireless at one time. My problem is that they keep on dropping the connections and have real problems reconnecting once it's dropped. After 4 or 5 tries, they may or not be able to reconnect.
View 1 Replies
View Related
Aug 10, 2011
Model: WAP4410N-A V02
Firmware version: 2.0.3.3
Deployed 3 of these as WAPs. No repeaters. They are spaced at least 50 feet apart over three offices, each in a server or switch room.
Across multiple laptops, and multiple WAPS, the wireless will function fine for a while with good bandwidth..then the connection will simply drop. By simply resetting the connection on the laptop or turning the wireless off then on, the connection typically returns, at least for a period of time before it drops again.
I’ve tried these configured as three separate SSIDs on identical channels, as well as one SSID for all three with different channels (preferred for a seamless wireless), and the behavior does not change either way.Based on some other threads, I tried forcing the LAN port speed to 100 mbps, but the problem persists.
View 7 Replies
View Related
Apr 24, 2012
Randomly the internet connection for either my, my son's , or my husband's pc drops. This also can happen with the X-box. The router lights indicate it is working and the rest of the connections will be fine just randomly any one of ours will fail until we reset the router. Two of the pc's are wired, one is on a plug (devlo) and the xbox is wireless. I phoned BT, our isp, who sent an engineer out. It turned out the BT rep told the engineer I had reported no dial tone on my phone line and if I had allowed them to investgate this fictitious fault it would have cost me £150 for a call out.
View 4 Replies
View Related
Aug 22, 2011
I've got a DIR-651 that does one of two things regularly:
1--drops all wireless connections momentarily, then re-establishes them (happens multiple times a day)
2--drops all wireless connections and has to be reset (happens every 0.5-2 days)
#1 wouldn't be a big deal, except that I keep VPN connections on two systems and have to re-establish them every time this happens. I should probably also note that this happens even on the weekends, when those two systems are not VPN'd in.
It has done this since day 1, and the firmware update did not work.
What HW version is your router? A1 What FW version is currently loaded? 1.01NA
What ISP Service do you have? Cable What ISP Modem do you have? Stand Alone What ISP Modem make and model do you have? Scientific Atlanta 2203C
Ensure DNS IP addresses are being filled in under Setup/Internet/Manual? done Turn off QoS options. done Turn off Advanced DNS Services if you have this option. done Turn on DNS Relay under Setup/Networking. done Setup DHCP reserved IP addresses for all devices on the router. done Ensure devices are set to auto obtain an IP address. done Set Firewall settings to Endpoint Independent for TCP and UDP. done
What wireless modes are you using? mixed B/G What security mode are you using? WPA-Personal What wireless devices do you have connected? 3 laptops, 1 desktop, 2 Blackberries, 1 printer Any cordless house phones? yes, DECT 6.0. Did not interfere with previous Netgear or 2Wire routers. Any other WiFi routers in the area? up to 5 others, but they are all far away and my house has thick stone exterior walls
View 7 Replies
View Related
Jan 22, 2012
I'm having a problem with my clients dropping the network connection constantly throughout the campus. I am using a Cisco 5508 controller and the APs are LAP1141N. At first I thought it was a roaming issue but I tested with only 1 AP and the problem persisted, I can tell you that we don't have interference problems and that our old linksys APs used to work without flaws.
View 1 Replies
View Related
Jun 28, 2012
I have a cisco RV180 hooked up to a cisco cable modem and Cox service.
The basic symptoms of the problem are that every 10 minutes or so external connections will hang. This lasts maybe 20-60 seconds. If you're loading a website when this happens, various parts of it won't load and firefox will sit and spin indefinitely (it seems) until you manually stop the loading and click the reload button.
When this is happening I can still connect to the routers webserver and dashboard that auto-refreshes every 10 seconds. It seems perfectly fine. My initial theory was that something was broken on the Cox end of things, but after swapping out the RV180 with an old on-q router we had laying around, we haven't seen the problems.
Some other differences I've noticed between the on-q and the rv180:
* with the rv180 traceroute to external hosts shows a big delay (500-600ms) at the hop right after the router. With the on-q, it's 12ms.
* when I ping the ip of that hop with the large delay, with the on-q I get no responses. With the rv180 I would get these strange host redirect messages that make it look like that ip is redirecting to itself. There would be 1 or 2 of those redirect responses, followed by 3 or 4 errors, and every packet would be listed as an error in the ping summary.
View 16 Replies
View Related
Jun 4, 2012
I have recently setup one stand alone aironet 1140 with mostly default settings with WPA key. but, it seems sometimes it's dropping the connections. hardly 15 users are connecting to aironet at the moment.
View 2 Replies
View Related
Nov 11, 2012
A couple of days ago, after a suggestion in a old forum post (rv180 dropping connections every 10 minutes or so) I tried increasing the various session timeouts. This didn't seem to affect anything for the first day, but last night the router started becoming unresponsive (not responding to pings, but maybe continuing to route established connections.) After a couple minutes the router would be pingable again, and as soon as i could I reverted the changes I made to the session timeouts. That didn't seem to fix the problem. Logs showed many many warnings saying "nf_conntrack table full, dropping packet."
Then as soon as I got on the phone with small business support the problem seemed to correct itself. The only thing we changed was decreasing the MTU to 1472. It is strange that the MTU would make a difference all of the sudden, isn't it?
View 1 Replies
View Related
Apr 26, 2012
We have with AP541N-E-K9 on the latest firmware.
Our AP541N-E-K9 keeps dropping all WLAN connections and will not allow us to connect via WIFI. I have to switch the unit off and on but even so sometimes it will take 10 mins for the WLAN to accept new connections. Nothing has changed on the network for months as it is a very basic scenario ie Draytek DSL Router -> Cat5e cable -> AP541N-E-K9, thats it! The AP is really only used for guest access and may have about 15 staff connected via WIFI at any one time.
View 9 Replies
View Related
Feb 8, 2013
After 5 years of services my DIR-655 begun acting up yesterday; first of it begun by getting REALLY slow, it could take up to 25 seconds to login into the software and up to 30+ seconds just going from one menu to another, on some instances connection (wired) to the router was lost. This morning it started dropping all connections, wired or not; first my iphone then my WDTV, after that it's been pretty much random connections. On one given moment wired works but not wireless, then wireless works but not wired and sometimes I get both but for 3 or 4 minutes.I've reset the router to factory settings, plugged/unplugged, changed cables, network adapters on desktops and the problem persists.
DIR-655 A2
FW: 1.35
Connection: ADSL
View 2 Replies
View Related
Jan 17, 2012
my configuration; ADSL2+ @ 21Mbps comes in via Telstra. Fibre optic cable trunk to main road, copper to the house, total distance 246m, hence good speeds. The phone is connected to a dual port filter with a phone and fax connected through double adapter to one port, and DSL-526B connected to other port.DSL-526B connected to DIR-655 Hardware A4, firmware 1.30. The two are set up in bridge mode, with a static IP. The DIR-655 connects to a DGS-1016D and a DGS-1008.I am running WIndows 7 ultimate x64 w/8GB ram, I5-2500K, and all MS patches.
four days ago I reinstalled my windows system. At that time, I uninstalled Tablet PC components and Windows search. I use FreeDownload Manager for my download needs, and it includes a BitTorrent client. I installed the latest version.From that point on, whenever I download any torrents the connnection to the internet resets and takes about 1 - 3 minutes to re-establish itself. I have tried going back through the several versions of the program to get back to the version I was running before I re-installed all to no avail.
I replaced the cable between wall socket and filter, replaced filter, replaced phone cable, also to no avail. I have tweaked the program settings now with only three half open connections, and I've reset the modem donezn of times. I've reset the DIR-655, and done factory resets on both and reconfigured them. Nothing has worked. I use MAC address filtering and I have ACLS which block access to various sites because of kids, and I use OpenDNS web content filtering too.
View 13 Replies
View Related
Jun 7, 2011
I'm trying to set up a S2S VPN between two ASA5505 SP units running ASA Version 8.2(1). I've ordered additional ADSL2 lines to handle this traffic and I'm having troubles with the configuration for the additional PPPoE connection. Here is are extracts from my current config; First the interface vlans
!
interface Vlan1
nameif inside
security-level 100
ip address 192.168.1.1 255.255.255.0
[code]....
The result being that I can ping the OUTSIDE interface, but get no reply from the VPN interface. I've checked ADSL lines, they are up. The two PPPoE sessions are logged in and active. I can even see the ICMP packets hit the VPN interface, but there is no reply.
View 1 Replies
View Related
Oct 14, 2011
I am getting crazy with our Cisco Linksys RV016. It handles 3 simultaneous connections to the internet using 3 ISP. All our company goes to the internet using this cisco linksys RV016, our corporate switches are connected as clients to the router. Sometime ago, this router started to drop POP3 connections to our network, when this problems is present, all users get Receiving' reported error (0x80042108) in Outlook 2007-2010. Currently i have setup POP3 service to use the First ISP connection, but when this problem is present, the only way to eventually resolve it is to switch the link POP3 Service from the First to the Third ISP, sometimes it works immediately, sometimes don't. We are using this router since 2007 but this problems started to arise from this month.
Our switch is the latest firmware available is Cisco website, this is the Firmware Version: 3.0.2.01-tm.
View 5 Replies
View Related
Jul 24, 2012
We have a newly-purchased RVS4000 v2 with firmware v2.0.2.7. Its intended role is as a gateway between our local network of wired workstations and a Cisco 2800 series Integrated Services Router, which is at the receiving end of our T1 line. It is configured with static IPs on both the LAN and the WAN side. It does NOT serve DHCP for the LAN. Ever since I installed it, I have had repeated complaints from users of Vista and Win7 workstations that they lose internet connectivity about every 20 - 30 minutes or so. The only solution is to unplug the workstation's CAT5 cable, count to 30, and plug it back in. Then everything's hunky dory for another 20 - 30 minutes. Meanwhile, all our Windows XP and Linux workstations enjoy uninterrupted internet access. The router/gateway we replaced (a DLink DIR-130) never had this problem.
View 4 Replies
View Related
Feb 7, 2011
Basically i got a belkin(on a tight bufdget) wireless n modem(f548633) last week. and when i first set it up it was fine except it disconnectiong everytime ia setting was changed on it and taking ages to reconnect to it.
anyway in the last 2 days its started dropping connections to anyone using the wireless. thing is it doesn't completely disconnect it just goes down to around 5kb transfer but when trying to acces the router through IP it doesn't load unless i disconnect and reconnect. i could deal with this at first as it was once every few hours but now its happening every 5 minutes. i plan on sending it back but thought i'd have one last ditch effort at working this out. my security log shows alot of ACK sends to my IP.
02/07/2011 23:26:08 sending ACK to 192.168.2.4
02/07/2011 23:26:08 sending ACK to 192.168.2.8
02/07/2011 23:10:15 sending ACK to 192.168.2.8
[Code].....
View 8 Replies
View Related
Apr 19, 2012
I have my RVS-4000 configured using static IP addresses in the LAN configuration. The users use DHCP to get their addresses (for the most part, a couple may have static IPs set on the computer). I have the maximum number of DHCP users set to 1 to restrict the ability of people to log in to the system. That one address is locked down.
Almost daily one or more of the users will lose their IP address and a hard reset of the router is required. The user this happens to seems random and it may be more than one but seldom all of them. The network includes Windows7 (Home & Pro), a FreeNAS, Macs (Leopard and Snow Leopard) and an AirPort Extreme used as a WAP (DHCP is disabled). The AirPort is plugged directly into the router and has a staic ip on the RVS-4000 but is set to DHCP. It seems to be the most common problem child.
View 1 Replies
View Related
Nov 30, 2012
I have a Linksys E900 router that seems to drop connections all the time. When I look at the status page, all the IP4 information is gone.
View 1 Replies
View Related
