What can cuase TCP resets on a Cisco 2821 Router?

Unanswered Question
Mar 17th, 2009


I would like to know what the following means:

ip auth-proxy max-nodata-conns 3

ip admission max-nodata-conns 3

Is this a part of Cisco IDS? Can this cause TCP resets to the source if it

detects a signature that does not comply with security policy?

Please could you explain this to me?

We are experiencing TCP Resets on TCP packets across our network.TCP packets are also being stripped of there flags.

An example of that is happening is:

18:17:11.782231 IP > S

321058119:321058119 win 64240 <mss


This looks like a TCP proxy stripping the TCP packets.

Plase advise?



I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
htarra Mon, 03/23/2009 - 16:21

ip auth-proxy max-nodata-conns 3 To set the the authenticatio proxy idle timeout or maximum number of idle connections, use the ip auth-proxy command in global configuration mod max-nodata-conns Maximum number of idle ("no data") TCP connections that can exist globally for the IP authentication feature. The range is 1 to 1,000. The default is 3.


This Discussion