ASA Sending RST Packets - Random Disconnects

Unanswered Question
Dec 18th, 2007

We have had an ASA put in place and we see random disconnects when going through a VPN tunnel. From packet captures it seems that the sender will send a packet that has a bad TCP checksum and then the ASA will respond automatically with a TCP RST. Is this a normal behavoir, any ideas on troubleshooting or possible changes?

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
vkapoor5 Thu, 12/27/2007 - 06:42

By default it will pass incorrect checksums for UDP and TCP. You can configure the PIX to drop TCP packets with bad TCP checksums with the "checksum-verification" under the tcp-map.


This Discussion