I have Cisco ASA5510 which is causing issue. when i download somthing through firewall download speed decreases and if i bypass the firewall (directly connecting to router through static IP) i am getting proper download speed.
i have set the port on auto negotiations on both firewall inside and Core switch. still having the same problem.
I just built my first comp and everything is up and running..no problems for about a week. but now my internet is slow... like 10 ks slow.i am on satalite internet with my comp on a lan cable to the router. my wife's laptop is wireless.. both seem to run fine with explorer etc, but when i try to download updates for games or comp, all but stalls out.
View 16 Replies View RelatedI bought a new linksys router. Set it up and now when I am downloading something and surfing the web I can't connect to websites (DNS lookup fails). However, the download continues fine. This problem seems to be isolated to my Mac, as the other computer in the house work fine. Qos is disabled.
View 1 Replies View RelatedMy D/Speed or Download Speed is roughly 1.5MB.HOWEVER, when I download something it says I am only downloading 171.5KB/s have a look.Picture of speedtest.net STATING I have 1.42-1.50MB download:
Picture of Steam stating I am Downloading at 160-180KB/s:
Plus, If addition, the fact that this has been going on for over a year, and I haven't gone off and freaked out on my ISP is...
I've some troubles connecting my PS3 to my RV120W.Both router and PS3 have latest firmwares. They are connected wireless (distance is about 10 mt, signal is good).PS3 ip is in DMZ (connection doesn't work with only Upnp), and ip fragmentation is enabled.Everything seems to work (NAT type 2), but downloading on PS3 is extremely slow. My ADSL is a 6Mb, download speed on PS3 seems like more than ten times lower (I don't know how to test it..). Plus, downloading a 100 MB patch is almost impossile, cause sooner or later I get an error and i have to restart.Two of my PCs are connected wireless, so I guess wi-fi is not the problem.
View 3 Replies View Relatedmy internet is being slow. It 'uplink' speed is 7mbps. when downloading or just surfing the internet 'task manager' says that the computer is using below 5% of the internet's speed capasity. it never gets higher than this, is there any way to change this so that i can us the full potential of the internets speed.
View 1 Replies View RelatedBefore 2 - 3 days I bought a PC with wireless lan (RP-WP5122E WL-N PCI-E ADAPTER). I have and laptop, too. My router is Linksys WRT160NL. The laptop have a wireless card with G standart. On speed test makes 14 - 17 Mbps download, which is normal. When I try to download something on my PC maximum speed is 400 - 600 kbps, on speed test is 2 - 4 Mbps. When I connect my PC with cable to my router speed was 10MB/s (80 - 85 Mbps). I try to change channels on wireless network, but there is no change. I downloaded the latest drivers for this WLAN, but the speed is the same. I change the slot on the mainboard and to flash the firmware on my router, but there is no change.
View 1 Replies View RelatedI am using a Thomson ST516 v6 DSL Modem, through which I have connected a Tenda W311R+ Wireless Router. There's two laptops, one running Windows 7 Sp1, the other running Windows Xp Sp3, and an Android based phone using this connection. I should mention that the problematic laptop had Windows 7 before switching to Xp and ran without any issues.
[code]....
Could the new internet card be making my downloads and emails VERY slow or is it bad line speeds. Would a new modem router improve things.
View 1 Replies View RelatedI set up the e1500 and everything worked well, my download speed over the wifi was something like 50mps, now its down to .3 mps over the wifi. When I'm hardwired to the router the speed goes back up and everything is fine. The only problem is the wifi. Its not the ISP because my roommates aren't having a problem with their wifi at all. I haven't changed anything on my computer except updated some drivers since I set up the router. My network card drivers are up to date and so is the router's drivers. I'm also doing all this about 5 feet away from the router.
I have a Dell XPS L502x running win 7 64 bit.
I have an issue with slow downloading and uploading on u torrent with my wired router linksys BEFSX41. I thought it may be because I didn't set port forwarding on the specific ports the u torrent use.
But every time When I try to set new port forwarding rules on my router's control panel its asks me for a password and user. Although I know this password and user it will keep asking me about them without saving the new port forwarding settings.
I have a Netgear 600 dual band router connected to a DOCIS 3.0 cable modem with a 25mps internet connection from my ISP, should be fast right? When I run a speed test on my comp I get 10-13 mbps download on average. Here's the issue, upon visiting my mothers house and running the same speed test I got very similar results. She is running a Lynksys G router on a DOCIS 2.0 cable modem with 12mps connection. My question is, how can this be so, am I at the limits of my comps g network card? as a disclaimer I would like to note I am connected to the G band on both routers.
View 1 Replies View RelatedASA 5510 have two model Bun-K9 and Sec-Bun-K9 from the datasheet find out difference Port related and Redundancy. My questions is : Have any major difference for Security service between two model ?
View 3 Replies View RelatedWe have many VPN tunnels back to our corporate office. All of these tunnels are very slow (same with our client VPN's). Our main firewall device at the corporate office is an ASA5510. We have a 100 Mb/sec Metro Ethernet internet connection here. We do not allow split-tunneling.
Our remote sites vary. We have DSL connections, cable internet connections, and other types of broadband that vary in speeds from 5 to 100 Mb/sec (up and down). The remote sites mostly have PIX 501's, but we have an ASA 5505 in one of the locations.
To take an example. On one of our remote sites that has a 100 Mb/sec connection, if I ping device to device, I'm getting ping times of about 50ms. And I'm pinging back through another 100 Mb/sec connection. If I get on a computer down there and run a speed test, I'm showing down speeds of about 1.5 Mb/sec... nowhere near 100. Some of that could be due to the lack of split tunneling, but I also suspect this could be an MTU issue.
Right now, all my MTU's are just set to the default 1500. Perhaps this is too high. I used this site to check my max: [URL]
I did a few tests from behind several of my firewalls. I pinged from a machine on one side of the tunnel to the firewall on the other end. I'm assuming the max MTU I come up with is the max MTU for the firewall I'm behind while pinging, right? The max amounts I came up with for some of my devices were as follows: Corporate ASA 5510 > 1272 (if you add the 28 byte packet header that would make it 1300) Remote PIX 501 > 1416 (if you add the 28 byte packet header that would make it 1444) Remote ASA 5505 > 1418 (if you add the 28 byte packet header that would make it 1446)
So, do I just need to set my MTU values to the appropriate amounts? I have tried changing the value, but I don't see any change in speed/performance. But I also don't know if I need to reboot the firewalls after changing the MTU. I know with Catalyst switches, you have to reload. But I didn't see any messages about needing to reboot on the ASA's/PIX's.
I have a Cisco ASA 5510. I am trying to copy large files between DMZ and INSIDE network and it is copying at awfully a slow speed. I thought it might have been related to duplex mismatch but it doesn't seem to be. DMZ interface is set at 100 full duplex. I programmed the port on the managed switch where the DMZ uplink is connected to be 100 full duplex. I even hard set the NIC on server to be 100 full. Nothing worked. So, I come to a conclusion it isn't the duplex mismatch but there gotta be something else on Cisco ASA. I was googling for this issue and came across it could be a QoS policy. Now, checking my ASA I see a any to any global service_policy where it is defined to inspect certain protocols where 'netbios' is one of them (among others such as 'ftp', 'tftp', etc. Could the slow copying be related to the above policy? Could there be a bandwidth limitation between DMZ and INSIDE interface? How do I check?
View 5 Replies View RelatedI have a repating 2901 router failure when people attempt to download Apple Mac OS X Moutnain Lion upgrade from App Store.
The 2901 just hangs following getting a series of ZBFW packet drop failures:
001928: Jul 26 22:37:18.783 UTC: %APPFW-4-HTTP_PROTOCOL_VIOLATION: HTTP protocol violation (0) detected - session 192.168.223.109:49310 184.25.254.67:80 on zone-pair ZP-PRIVATE-OUT class ccp-protocol-http appl-class ccp-http-blockparam
[Code].....
I am able to ping from Switch to firewall inside ip and user desktop ip but unable to ping from user desktop to FW Inside ip.. config is below for both switch and FW Cisco ASA5510....
TechCore-SW#ping 172.22.15.10
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 172.22.15.10, timeout is 2 seconds:
[Code].....
I have two ASA5510's set up in failover, and the secondary keeps crashing after doing the interface checks when bringing failover up. This only happens if I try to upgrade the image on the secondary to anything newer than 8.4.1 (I've tried with 8.4.1-11 and 8.4.2). The primary one run just fine with new images.
I don't have the exact error right now, as I need to do a screen capture from console. It's just a huge crash dump.Are there anything I might have missed during the upgrade? Should I cold-boot both the firewalls in the correct order?
i have a ASA5510 in the office, that already configured 3 context, namely, admin, user, server.in the server context, the last running config was not saved, and there was a power trip last friday night. 1 of the sub interface was affected, and i need to recreate that interface.I am getting the below error, it only allow me to do changes those pre-defined interface.how to I create extra sub interface?
View 3 Replies View RelatedI have a ASA5510 and I have a question about the speed the ports can handle, here is one port:
-interface Ethernet0/2
- speed 100
-shutdown
- no nameif
-no security-level
-no ip address
it's ethernet and not fastethernet so I figure it will only go to 10Mbps, but at the same time I can hard code the speed to 100.
i have cisco ASA 5510 Firewall using in my network, i have planning to upgrade the Flash memory from 256 mb to 512 mb and the RAM from 256 mb to 1GB.
View 1 Replies View RelatedI have a cisco asa 5510 with security plus license in Live enviroment . I need to add a secondary firewall . I was planning to do in active /standby mode for failover .But i have a doubt , when i do "show version " on live asa output says Active /active failover , does this means that i can only configure failover in active/active mode not in active/standby (which i want to do )?
Maximum Physical Interfaces : 8
VLANs : 20, DMZ Unrestricted
Inside Hosts : Unlimited
Failover : Active/Active
VPN-DES : Enabled
VPN-3DES-AES : Enabled
VPN Peers : 25
WebVPN Peers : 2
Dual ISPs : Enabled
VLAN Trunk Ports : 8
AnyConnect for Mobile : Disabled
AnyConnect for Linksys phone : Disabled
Advanced Endpoint Assessment : Disabled
UC Proxy Sessions : 2
This platform has an ASA 5505 Security Plus license...
i am using Cisco ASA5510 Firewall in my Network in the distrubition Layer .Private Range of Network Address use in the Network and PAT at the FW for address translation.presently encountering an issue the users behind the FW in my network unable to RDP at port 2000 presented at the Client Network.Able to Telnet on port2000 but not RDP . any changes needed at the FW end to get the RDP Access.
View 12 Replies View RelatedWe have to use scp on all of our network devices. It worked quite well on our routers and switches but I can't seem to get it to work for the firewalls and IPS. I enabled scp on my ASA5510 using the command "ssh scopy enable". I also ensured that a rsa key was generated and that ssh ver 2 was enabled. But I can't seem to locate the commands to actually have my firewall either copy it's configuration to a server or reach out to a server to pull down a file. We are using IOS 8.2(1).
View 1 Replies View RelatedI have a customer who wants to prioritze rdp traffic throgh the firewall.I know that its port 3389, but outgoing traffic is a random port number.Any smart way to catch this traffic and get it in the LLQ ?
View 3 Replies View Relatedwe have ASA 5510 which we need to upgrade from 8.0(3) to 8.2.5. can we directly switch to 8.2.5 from 8.0(3) , if not what all versions we need to go from.
What all point needs to check before that following is show flash output.
97 14635008
Jan 01 2003 14:12:16 asa803-k8.bin 98 4096
May 14 2008 21:22:10 tmp 2 4096
Apr 20 2008 02:21:46 log 6 4096
Apr 20 2008 02:22:16 crypto_archive 99 6851212
[Code] .....
My device has 3 interfaces configured: inside, outside, DMZ. Right now I can access the DMZ from the Internet and I can access the DMZ from the LAN using an exempt nat statement. I am having a few issues setting up DMZ > LAN access however. The servers running on the DMZ need to send information to my LAN such as syslog traffic for example. Will DMZ traffic be NATed or should this somehow be excluded? Bascially all LAN devices should get to the DMZ devices by their actual IP and vice versa. Are there any special statements I need to add to the ASA such as nat or ACLs to make this work? My LAN is 10.10.6.0/24 and DMZ is 192.168.254.0/24.
View 1 Replies View RelatedI have a ASA 5510 with asa8.4(2) and asdm6.4(5)205. Have a new basic config, nothing special at this time. I just cannot seem to get from the inside to the outside. From the outside interface I can ping, so I have a good Internet connection. [code]
View 3 Replies View RelatedWE have a DMZ on ASA5510 8.4, it can access anything internal interface but cannot get out to internet or outside interface. I try to ping from a host in the DMZ to 8.8.8.8 and get this in the log 6Apr 25 201208:24:431100038.8.8.80172.10.1.1501Routing failed to locate next hop for ICMP from outside:8.8.8.8/0 to inside:172.10.1.150/1. [code]
View 14 Replies View RelatedI am having ASA5510 firewall which has 1GB RAM currently. I want to upgrade to 2GB. When I opened the box, I can see only 1 slot to insert the RAM. I searched in Cisco website and I got to know that I need to use 2 x 1 GB RAM. So, I need to have 2 slots to do that. But, I am having only 1 slot in the box.
View 5 Replies View RelatedWe have an ASA5510 with a backup ISP connection protecting our corporate network. I also have a mail server and I would like to route SMTP traffic over the backup network. I realize that the ASA5510 does not support PBR, but I also know that I can use static NAT rules as a workaround to direct specific types of traffic over a particular interface (e.g. "static (outside,inside) tcp 0.0.0.0 www 0.0.0.0 www netmask 0.0.0.0" and "static (backup,inside) tcp 0.0.0.0 smtp 0.0.0.0 smtp netmask 0.0.0.0"). is it possible to use something similar to force a particular host to use a specific interface? I have tried to make this work on my own without success. Is it even possible?
View 5 Replies View RelatedI bought a Cisco ASA 5510 (P/N: ASA5510-BUN-K9) and i would like to know if i have to buy some license,What i mean is, for the basics, it still being necessary aquire some license?
View 3 Replies View RelatedWe are about to upgrade our ASA's from 7.04 to 8.2. Obviously I will be opening a TAC case to assist with the upgrade and I will also be upgrading ASDM software at the same time. These production firewalls are paired with an active --> failover scenario and not active --> active. I had previously engaged cisco regarding the upgrade and they have recommended an upgrade path to ensure success. Also, I have a pair of test ASA's that I've gone through the upgrade process with - documenting the changes in commands and any changes in my config (I didn't notice any).So, the reason for my post is this: What are the gotcha's that you may have run into when upgrading your ASA's?These are fairly high visibility ASA's and any downtime due to the upgrade needs to be mitaged as much as possible.
View 1 Replies View Related