difference ASA 8.0.2 and 8.0.4

Unanswered Question
Oct 31st, 2008
User Badges:

Hi,


i have strange problem with access by ipsec client: with ASA 8.0.2 all is ok but with ASA 8.0.4 some TCP connection through ipsec client arent association (rdp, sql, etc..). With SSL client on ASA 8.0.4 all traffic is ok too.

Sometimes i logging deny tcp (no connection).

Do you have any idea where is problem please ?


lukas

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
purohit_810 Sun, 11/02/2008 - 10:01
User Badges:
  • Silver, 250 points or more

Hi,


Can you see in Caveats? is there any Caveats open?


I haven't perfect error from you so i can't say.


Thanks,

Dharmesh Purohit

lukasdrbo Tue, 11/04/2008 - 03:17
User Badges:

Hi,


maybe this:

Deny TCP (no connection) from vpn_range to lan_srv/3389 flags ACK on interface ext

Deny TCP (no connection) from vpn_range to lan_srv/3389 flags FIN PSH ACK on interface ext


but i havent idea. its rdp to one server, rdp to others servers are ok. if i reboot ios to 8.0.2, this connection to lan_srv is ok. i dont understand to it :-(. (without changing cfg of course)



thx,


Lukas

lukasdrbo Mon, 11/10/2008 - 03:15
User Badges:

solution is disable IP Compression in the ipsec group-policy


lukas

Actions

This Discussion