We have a HP network load replicator/generator which simulated live network traffic. We are running the ASA’s through a test where about 85Mb of “live” traffic is being pushed through it (plain HTTP). The initial tests resulted in a large number of packet drops once the data rate hit about 35megs.
By issuing the “ show asp drop” command we were able to determine that the dropped packets were due to tcp session being closed prematurely.
sh asp drop
First TCP packet not SYN (tcp-not-syn) 25894
TCP failed 3 way handshake (tcp-3whs-failed) 3703
The “sysopt connection time” helped slightly but the device is still dropping a lot of packets. According to the customer the true purpose of the HP network replicator was to simulate their customer's, “online check out sessions” their old PIX525 does about 600 sessions per minute, and the ASA5550 hovers at 380 sessions per minute.
So, again, PIX525 is working OK on this environment.
-we've tried to switch from 7.2 to 8.0 and 8.2.1
-we turned off http inspects and threat-detection
-no duplex, speed mismatches, interface errors,
-memory and CPU loads are OK
- no info on the forum or in the bug toolkit
Any thoughts (please see sanitized config attached, the direction of traffic - from outside to inside via static NAT)?