This is a brand new network, so NO hosts, NOT even internet is connected, just my laptop connected via a console cable, and a ASA5510 is connecting to the new 4510 via ONE staright cable. And as soon as they two got connected, can ping to each other, massive input errors showed up on ASA interface. the 4510 if didn't get errors, but also showed massive packets were sent/recieved.
This is show inter on the ASA 1 sec after I cleared the interface.
ASA01# clear inter e0/1 ASA01# sh inter e0/1 Interface Ethernet0/1 "inside", is up, line protocol is up Hardware is i82546GB rev03, BW 1000 Mbps, DLY 10 usec Full-Duplex(Full-duplex), 100 Mbps(100 Mbps) Input flow control is unsupported, output flow control is off MAC address 442b.0359.10b5, MTU 1500 IP address 172.25.128.6, subnet mask 255.255.255.128 33625 packets input, 5279125 bytes, 0 no buffer Received 0 broadcasts, 0 runts, 0 giants 33633 input errors, 0 CRC, 0 frame, 33633 overrun, 0 ignored, 0 abort 0 pause input, 0 resume input 0 L2 decode drops 67258 packets output, 10559498 bytes, 0 underruns 0 pause output, 0 resume output 0 output errors, 0 collisions, 0 interface resets 0 late collisions, 0 deferred 0 input reset drops, 0 output reset drops, 0 tx hangs input queue (blocks free curr/low): hardware (255/230) output queue (blocks free curr/low): hardware (205/193) Traffic Statistics for "inside": 33625 packets input, 4673875 bytes 67258 packets output, 9348854 bytes 33625 packets dropped 1 minute input rate 0 pkts/sec, 0 bytes/sec 1 minute output rate 0 pkts/sec, 0 bytes/sec 1 minute drop rate, 0 pkts/sec ASA01#
So over 33K packets and almost all errored over 1-2 seconds. and no broadcast.
Tried different cables, no luck. and connected the ASA and the 4510 to my laptop separetedly on the same ports, no issue at all. monitor the traffic between they two, couldn't see many packets. and after reboot they were cool, no errors, no massive packets sending, until I sent a ping comand, then they went crazy.
Come on guys, someone please help me. It's really bizarre, only that two devices, a ASA5510 and a 4510, connected, nothing else, and why they two were so busy talk to each other. When I set my laptop as the switch's IP connecting to the ASA, or set my laptop to the ASA's IP and connected to the switch, and I got no problems at all....
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...