I've got an issue with a client of my running 7.2(2) on ASA5505. They use a business application called ESignal for some stock exchange analysis or whatever. The application doesn't work well after I installed and configured the ASA there. They experience unusually slow response (from 1 second before the ASA was used to 4-5 after that) and it seems that's a problem for them. Anyway, I made some research on the application and it seems it's using TCP (there's another one running on UDP...first I thought that UDP maybe the problem here but looks like it wasn't the right application...anyway) and a couple of ports have to be opened in outside direction:
I haven't filtered anything and as I'm using NAT from a lower to higher security interface this should not be a problem (anyway ESignal have a diagnostic tool which I asked my customer to run tonight and see if any issues like closed ports arise). Besides that they have about 10-15 PCs running this application and as far as I remember it opens lots of small windows having constantly refreshing their information which means LOTS of simultaneous TCP sessions in my opinion. I'm sending you the configuration of the ASA (I've replaced sensitive output with xxx), please take a look if you find something wrong here. I've turned off the inspection engine, removed all the ACLs (same story with ACLs in all directions permitting everything), increased the timeouts (the conn timeout should be used for TCP, right?), anything that came to my mind and still no result. I'm not really willing to do reverse engineering of the application as I still got no response from the ESignal support team so I'm trying to find out what the problem is from here. Will appreciate any help!