Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1750
Views
0
Helpful
2
Replies

What does this mean Dropping TCP Segment Reason: TCP reassembly queue overf

whiteford
Level 1
Level 1

‎11-09-2007 01:45 AM - edited ‎03-03-2019 07:28 PM

Hi, I have a Cisco 877 running in VPN mode and get this error sent to the syslog server throughout the day:

65: Dropping TCP Segment: seq:1180744820 1500 bytes is out-of-order; expected seq:1180719170. Reason: TCP reassembly queue overflow

1 person had this problem
Labels:
0 Helpful
2 Replies 2

jsivulka
Level 5
Level 5

‎11-15-2007 07:01 AM

change the ip inspect tcp reassembly queue length and test.

http://www.cisco.com/univercd/cc/td/doc/product/software/ios124/124tcr/tsec_r/sec_i1ht.htm

To set parameters that define how Cisco IOS Firewall application inspection and Cisco IOS Intrusion Prevention System (IPS) will handle out-of-order TCP packets, use the ip inspect tcp reassembly command in global configuration mode. To disable at least one defined parameter, use the no form of this command. ip inspect tcp reassembly {[queue length packet-number] [timeout seconds] [memory limitsize-in-kb] [alarm {on | off}]}

no ip inspect tcp reassembly {[queue length] [timeout] [memory limit]}

0 Helpful

whiteford
Level 1
Level 1
In response to jsivulka

‎11-15-2007 08:32 AM

Thanks for your reply, is the error anything to worry about in simple terms?

I will take a look at the link now.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card