SFTP transfer fails to server behind Cisco Firewall
We are observing a peculiar problem, where the client end engineers when they try to upload any file to one of our IBM AIX box, behind the firewall, the upload stalls (fails after 20-50%), after a while. when we move the server out of the firewall DMZ, the transfers are successful.
To give a brief about the connectivity. We have a site-to-site vpn between two parties and at our end we have the Cisco VPN concntrator 3030. The servers are are placed behind a behind a Cisco firewall in the DMZ area.
Is this something to do with the OS on the firewall? Can anybody help me out in trobelshooting this issue. I tried some sniffer, and it seems lot of retransmission occuring.
I beleive since site-to-site vpn is provided 2Mbps Internet, when we put the Server behind the firewall, its not able to negotiate the window size properly and tries utilizing whole 2mbps and eventually drops the connection after lot of re-transmissions due to congestion. While we put the server out of the firewall DMZ, it negotiates the window size as wells as makes the window size increase/decrease depending upon the availability of bandwidth.
Please let me know if my assumption is wrong and wold be great if anybody can provide more insight and troubleshooting steps.
DocumentationCode download linksGoalRequirementLimitationsSupported ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and UCS-E Blades:Step by Step ConfigurationConfigure one of the connectivity options to access the Cisco IMC from the n...
Firepower Threat Defense (NGFWv) on UCS E-series - Transparent Mode in HA
DocumentationCode download linksGoalRequirementLimitationsSupported ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and UCS-E Blades:Step by Step ConfigurationCo...
I am currently unable to specify "crypto keyring" command when configuring VPN connection on my cisco 2901 router.
The following licenses have been activated on my router :