Re: [fw-wiz] Reset-O from everyone!

Bill,

Check your inspect features and make sure that it is not dropping your connections due to header issues. Remove http and smtp and see if there is a difference. If they are not in there, then you must look at connection counts, MSS, and MTU. You will be able to determine these via the pcap your running.

Thank You,

Chris Myers
clmmacunix@xxxxxxxxxxx

John 1:17
For the Law was given through Moses; grace and truth were realized through Jesus Christ.


TIFF image

Go Vols!!!!

On May 6, 2008, at 2:52 PM, Bill O'Connell wrote:


Hello,

I have been having a problem with my new cisco ASA 5505. In ftp, http and SMTP traffic I keep getting Reset-O. Then (especially with the HTTP file transfers we do) I get 1 or sometimes many Deny TCP (no connection).

I have a real hard time believing that all of these outside hosts are doing Resets - and then still trying to communicate.

Cisco is looking at a pcap now, and it does show retransmissions from our web server to the host.

Has anyone seen this kind of behavior before? Does anyone have any suggestions? Could it be that there is a faulty router at our ISP?

Everything works flawlessly inside of our network.



Thanks,

Bill O'Connell
Network Solutions Manager
boconnell@xxxxxxxxxxxxxxxxxxxxxxxxxxxx
708-633-7450


NOTICE: This Liberty Creative Solutions, Inc. e-mail transmission (including any file attachment) is intended only for the use of the individual or entity to which it is addressed, and may contain information that is privileged and confidential, the disclosure of which is governed by applicable law. If you are not the intended recipient, any dissemination, distribution or copying of this communication is strictly prohibited. If you have received this communication in error, please notify the sender immediately by reply e-mail or a collect telephone call and delete or destroy all copies of this message and any file attachment. Thank you!

--
This message has been scanned for viruses and
dangerous content by OpenProtect(http://www.openprotect.com), and is
believed to be clean.

_______________________________________________
firewall-wizards mailing list
firewall-wizards@xxxxxxxxxxxxxxxxxxxxx
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards

_______________________________________________
firewall-wizards mailing list
firewall-wizards@xxxxxxxxxxxxxxxxxxxxx
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards

Relevant Pages

  • Checkpoint NG question
    ... I want that the HTTP and HTTPs from the pc's go via one ... connection the other communication go via the other internet ...
    (comp.security.firewalls)
  • Re: Can IPTABLES stop port scans by NMAP?
    ... One way might be to use port forwarding: ... HTTP, SMTP etc. etc.)... ... to one of those progs that hang on to a connection for HOURS, ...
    (comp.os.linux.security)
  • Re: Spam filtering with Connection Filtering
    ... If I have SMTP logging on my server, will it show the dropped connections? ... > Microsoft CSS Online Newsgroup Support ... >>I used http://support.microsoft.com/kb/823866/en-us to set up Connection ...
    (microsoft.public.windows.server.sbs)
  • Re: Spam filtering with Connection Filtering
    ... I just looked at my SMTP logs and I notice that the time listed for the ... my time is correct on my server ... > Microsoft CSS Online Newsgroup Support ... >>I used http://support.microsoft.com/kb/823866/en-us to set up Connection ...
    (microsoft.public.windows.server.sbs)
  • RE: SMTP sending failure, connection is dropped by remote host
    ... we can see the remote connection is reset by some ... the SBS external NIC to the internet connection to see if the issue still ... Please also recreate SMTP connectors for an external domainwhich you ... I will be here waiting for your updates. ...
    (microsoft.public.windows.server.sbs)