Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Problem with TCP flow.

Hi to all,

I have a big problem with the TCP flow.

The situation it is this:

PIX 525 ver 7.2.2

The PIX have 4 interface: INSIDE, CLIENT_NET, DMZ, OUTSIDE (in security order).

When a client (source host) that work on a security interfaces establish a connection with an other client (dest host) in one of less security interfaces, sometime the connection is broke.

I've ceck with ethereal the network traffic, and I've undertand this happen when the source host revice a lot the same sequence number and the host reply with a TCP Duplicate ACK.

I alreay tried to stop the "feature" that randomize the sequence, but this didn't fix the problems.

I think this is started when I've upgrade the PIX from ver. 6.3 to 7.2.2.

Do you know something about this issue???

Thank you so much for any answer.

Alfredo

148
Views
0
Helpful
0
Replies
CreatePlease login to create content