Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

ASA sending RST packet

Hi,

Don't if im being really dumb, but ive got an ASA setup as VPN concentrator. Which works fine, my issue is that the ASA is sending a RST/ACK packet back to a host when it's dropped by an ACL.

Has anyone come accross this ?

1 ACCEPTED SOLUTION

Accepted Solutions
New Member

Re: ASA sending RST packet

Hi Stephen

,

By default "service resetoutbound" is enabled for all interfaces on the firewall. This command is used to enable resets for denied TCP connections. You can disbale this by entering the following command in the config mode:

no service resetoutbound

More information can be found here:

http://www.cisco.com/en/US/docs/security/asa/asa72/command/reference/s1_72.html#wp1290652

HTH

Ashu

4 REPLIES

Re: ASA sending RST packet

Hi,

Is the ASA doing TCP intercept for the inside hosts?

Federico.

New Member

Re: ASA sending RST packet

ive not defined any tcp intercept parameters

New Member

Re: ASA sending RST packet

Hi Stephen

,

By default "service resetoutbound" is enabled for all interfaces on the firewall. This command is used to enable resets for denied TCP connections. You can disbale this by entering the following command in the config mode:

no service resetoutbound

More information can be found here:

http://www.cisco.com/en/US/docs/security/asa/asa72/command/reference/s1_72.html#wp1290652

HTH

Ashu

New Member

Re: ASA sending RST packet

Many thanks

2654
Views
0
Helpful
4
Replies