Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
222
Views
0
Helpful
1
Replies

Disconnecting Interface

aziermann
Level 1
Level 1

‎09-13-2007 10:51 AM - edited ‎03-03-2019 06:44 PM

I have a newly installed HWIC 1FE card that I setup as a DMZ port to a public multihomed web server. My issue is that the connection from the HWIC and the External NIC on the web server keep losing connection. I have configured the default gateways according to Microsofts best practices as there appears to be a dead gateway issue if you configure both interface cards with a default gateway. Now I am wondering if my router hwic card is hitting some sort of idle time out. I used this docuementation for my DMZ setup

http://www.cisco.com/en/US/products/sw/secursw/ps1018/products_configuration_example09186a0080094111.shtml

interface FastEthernet0/2/0

description DMZ port for raleigh enterprise reporting system

ip address 192.168.50.1 255.255.255.0

ip access-group 111 in

ip nat inside

no ip virtual-reassembly

ip route-cache policy

ip tcp adjust-mss 1400

ip policy route-map test

duplex full

speed 100

***************************************

FastEthernet0/2/0 is up, line protocol is up

Hardware is FastEthernet, address is 0019.561f.fc59 (bia 0019.561f.fc59)

Description: DMZ port for raleigh enterprise reporting system

Internet address is 192.168.50.1/24

MTU 1500 bytes, BW 100000 Kbit, DLY 100 usec,

reliability 255/255, txload 1/255, rxload 1/255

Encapsulation ARPA, loopback not set

Keepalive set (10 sec)

Full-duplex, 100Mb/s, 100BaseTX/FX

ARP type: ARPA, ARP Timeout 04:00:00

Last input 00:03:23, output 00:00:08, output hang never

Last clearing of "show interface" counters never

Input queue: 0/75/0/0 (size/max/drops/flushes); Total output drops: 0

Queueing strategy: fifo

Output queue: 0/40 (size/max)

5 minute input rate 0 bits/sec, 0 packets/sec

5 minute output rate 0 bits/sec, 0 packets/sec

65583 packets input, 64918142 bytes

Received 0 broadcasts, 0 runts, 0 giants, 0 throttles

0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored

0 watchdog

0 input packets with dribble condition detected

156447 packets output, 34481803 bytes, 0 underruns

0 output errors, 0 collisions, 4 interface resets

0 babbles, 0 late collision, 0 deferred

17 lost carrier, 0 no carrier

0 output buffer failures, 0 output buffers swapped out

Any suggestions?

Labels:
0 Helpful
1 Reply 1

lgijssel
Level 9
Level 9

‎09-13-2007 11:39 AM

Your interface is configured as nat inside.

There might be a translation timeout.

The same might be true for the timeouts with ip inspect.

How long does it take for a session to die?

Initial troubleshooting should try to reproduce this without nat or with modified timeouts.

regards,

Leo

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card