FWSM Firewall Version 3.2 xlat problem

Unanswered Question
Dec 7th, 2007

We have a fwsm (FWSM Firewall Version 3.2(2) with multiple VLANs configured. We have a server on one of the VLANs with

the ip say 192.168.1.1. Backup of servers on other VLANs are taken on this serer and hence we have opened the port range 22000 22009 from other zones to this zone.

The problem we are facing is that for one of the server in one of the VLANs backup fails frequently and this needs to be solved by using the command "clear xlate local 192.168.1.1". Backup of other servers in the same VLAN happens without much problems.

Once cleared the backup works fine. Can anyone provide a solution for this.

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.

What is your xlate timeout set at and is there a specific amount of time that passes before the backup dies?

One thing to do is look at your connection information while the backups are running.

Issue the command show conn local 192.168.1.1 (the ip of the local server) and notice what happens when the connection dies.

You may have to change your connection timeout and/or xlate timeout settings.

Actions

This Discussion