Hi
I would like to know what the following means:
ip auth-proxy max-nodata-conns 3
ip admission max-nodata-conns 3
Is this a part of Cisco IDS? Can this cause TCP resets to the source if it
detects a signature that does not comply with security policy?
Please could you explain this to me?
We are experiencing TCP Resets on TCP packets across our network.TCP packets are also being stripped of there flags.
An example of that is happening is:
18:17:11.782231 IP 41.161.31.34.17787 > 41.154.11.234.22: S
321058119:321058119 win 64240 <mss
1460,nop,nop,nop,nop,nop,nop,nop,nop,nop,nop,nop,nop,nop,nop,nop,nop>
This looks like a TCP proxy stripping the TCP packets.
Plase advise?
Regards
Eddy