02-16-2009 07:22 AM - edited 03-11-2019 07:51 AM
Installed ASA5505 in branch office. Have l2l VPN between it and HQ. Office is 1 server (W2k), 3 users, 1 printer.
Since connecting LAN to ASA users complaining of slow response times. When pinging from server to devices, average response is 20-30ms.
02-16-2009 07:27 AM
Is this through the Lan to Lan? If this is from Lan to Lan then ping from VPN end point to VPN endpoint, what is the rate? if this is from within the LAN have you check if your switch has no conflict on MAC addresses?
02-16-2009 07:30 AM
This is from within, on the internal LAN. No dup. MAC in the ARP table.
02-16-2009 07:31 AM
go ahead and do a "show run all sysopt" on your ASA and post it here please
02-16-2009 07:32 AM
Result of the command: "sh run all sysop"
no sysopt connection timewait
sysopt connection tcpmss 1380
sysopt connection tcpmss minimum 0
sysopt connection permit-vpn
no sysopt connection reclassify-vpn
no sysopt connection preserve-vpn-flows
no sysopt nodnsalias inbound
no sysopt nodnsalias outbound
no sysopt radius ignore-secret
no sysopt noproxyarp inside
no sysopt noproxyarp outside
02-16-2009 07:44 AM
Well proxy arp is disabled, usually these issues might occur by it. Have you cleared the arp of the devices that might need a refresh? I really can't think on why your ASA will cause issues for traffic that does not even get to it.
02-16-2009 07:47 AM
Naiveté alert: how do you do that? Are you talking just network equip. arp, or do PC's have arp that need clearing?
The ASA is the only switch in the network.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide