Site to Site packet loss

Unanswered Question
Feb 14th, 2007

My main office is using an ASA 5510 running version 7.2 (2). One of the Remote office's is running a Pix 506E version 6.3 (5)

I'm expecericing a dropped connection between the 2 locations about 2 twice an hour for only a second or two.

Data pipes are not an issue at all. I've talked to Cisco and they are claiming the updating to the 5510 to version 7.2 (2) solves the large file timeout issue. not sure what the classify as a large file. I currently have 3 users at the remote site. I cached their email locally.

I updated the 5510 and I'm still expierncing the problem.

This is a link to the bug they believe I have

Has anyone else expierenced this and what did you for a work around.

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
hoogen_82 Mon, 02/19/2007 - 04:57

I used to get dropped connections when i used to file sharing. So i have started using FTP instead for large files in my case files as large as 1GB.

Try FTP it might solve your problem.



DO rate if this helps out :)

Kamal Malhotra Mon, 02/19/2007 - 09:38


The dropped connection is between the inside hosts not the VPN right?

You might want to do a sniffer trace to see where the reset is coming from. And ofcourse the FTP is a good option. You might also want to run a ping test using the following command :

ping -l 1500 -f

You should see something like :

Packet needs to be fragmented but DF set.

Try lowering the packet size with a gap of 100 bytes e.g. from 1550 to 1400 and keep lowering it until you start getting the replies. Once you start getting the replies, configure the following command on both the devices :

sysopt connection tcpmss


Please do rate if it helps.




This Discussion