I have a Cisco ASA 5505 that has been configured to act as a router as well. I have configured 3 VLANS that have access to the internet. For some reason the "InsideWifi" and the "Guest" VLANS have very slow internet speeds and sometime web pages wont finish loading properly. The "Inside" VLAN gets the speeds that are expected. The DNS server does reside on the "Inside" VLAN. Is there anything wrong with my configuration that would cause the internet speeds on the other VLANS to be slow? My config is attached.
To rule out your internal DNS server as the root cause, can you point your users in guest vlan and insidewifi’s dns settings to Public DNS Servers e.g. 126.96.36.199. If this is fast, then you’ll need to look deeper into your internal DNS Server. However, if this doesn’t resolve anything, then you could do the following;
a) To remove the threat-detection commands
b) To remove the ip audit commands
c) To fix the port/speed and duplex in Eth0/0-3 (do it on both ends)
Ramraj Sivagnanam Sivajanam
Technical Specialist/Service Delivery Manager – Managed Service Department
Thanks for the reply, this issue actually ended up being a misconfigured DNS address on the DHCP server. The DHCP server was handing out an address of 127.0.0.1 rather than its own address. Your response lead me to verify the configuration of all the DNS servers. Its one of those things that I assumed was correct and didnt take the time to check everything.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...