Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
734
Views
0
Helpful
5
Replies

PIX 515E to ASA 5505

Psuedo123
Level 1
Level 1

‎03-11-2008 11:07 PM - edited ‎03-11-2019 05:15 AM

Recently upgraded from a PIX 515E to an ASA 5505 and now I lose internet connectivity every hour.

WAN interface reports no issues and the connection works fine if I unplug it from the 5505 and back into the PIX 515E without a reload.

Should I have upgraded to a ASA 5510 not a 5505?

There appears to be a config issue but I just can't find it.

Labels:
0 Helpful
5 Replies 5

brettmilborrow
Level 1
Level 1

‎03-12-2008 01:21 AM

Hi,

Can you confirm how many users you have traversing the firewall?

Also, are those users using the internet alot?

0 Helpful

Psuedo123
Level 1
Level 1
In response to brettmilborrow

‎03-12-2008 03:40 PM

Approx 300 users through the firewall.

Though a "show tech" does confirm that I have unlimited inside hosts:

Message #36 : Maximum Physical Interfaces : 8

Message #37 : VLANs: 3, DMZ Restricted

Message #38 : Inside Hosts: Unlimited

It is a 10Mb/10Mb link and each user only has 40MB per day for internet bandwidth. The majority don't even get close.

I thought it may be something to do with the MDIX not being auto negotiate though I have set the interface back to auto speed and auto duplex to fix this.

Still have the same problem though.

0 Helpful

brettmilborrow
Level 1
Level 1
In response to Psuedo123

‎03-12-2008 03:43 PM

Do you notice anything in the log, or on the console when the drop out occurs?

0 Helpful

Psuedo123
Level 1
Level 1
In response to brettmilborrow

‎03-12-2008 03:46 PM

Bascially shows that everything is operating correctly.

All interfaces show as up, VLANs Up. I even replaced the unit with another ASA 5505 to rule out any hardware fault (unlikely).

Is not an ISP issue as it all works fine for the PIX 515E.

0 Helpful

sugranka
Level 1
Level 1

‎04-09-2008 03:20 AM

Dear Psuedo,

I was wondering if you found a solution for the problem you were facing on the ASA 5505 device?

I am facing the same problem and I shared my 'sh tech' output with a friend who was Cisco Certified. She said that the reason why this problem happens is because of the Flash memory is not able to handle a sudden flood of packets which makes the device hang.

The solution for this she suggested is increasing the flash memory or updating the software which i am not able to do. I can't raise a TAC number as well with Cisco.

Have you found any alternative solutions to this?

Thanks

Sid

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card