I have a 100mbps internet connection from my ISP but once the connection hits the ASA the download speed gets reduced to 15mbps. My network is setup as follows: ISP Modem ---- Edge Switch ----- ASA --- Internal Cisco Switches
If I plug my computer into an extra port on the Edge Switch I get speeds around 92mbps with normal traffic still going to the ASA. But when I plug into the ASA and internal switches I have speeds of 15mbps.
I have made sure that duplex/speed match on the links. I have done packet captures and within two minutes I do have several dup acks and retransmissions. The retransmissions don't seem to match the dup acks. (The retransmission is not for the dup ack requested so the dup ack keeps being resent)
The only interface error is on the inside interface which includes 700 overruns in a weeks worth of time.
I am not using an IPS/IDS. I do have several vpns on it but was not going through a vpn tunnel. I am also using NAT.
I am using an ASA 5510 8.2(1)
Any ideas on what could be causing the problem would be appreciated.
Karthik thank you for the reply. The flowcontrol command does not seem to be available on my ASA from looking at the following Cisco document http://www.cisco.com/en/US/docs/security/asa/asa82/command/reference/ef.html#wp1952456 it was not available on 1GB ports until 8.2(5) and I am on 8.2(1). Looks like I will have to do an upgrade before I can try that command on the ASA. I did try it on the switch port connected to the ASA and my speed did not improve.
I went through the document that was in the link that you posted but did not find anything that helped.
By the way I forgot to mention that my upload speed is fine. My upload is 80-90 mbps but my download is 15mpbs when it should be near 100.
The problem I was having was with the download speed. I found that an admin before me created a QOS policy to throttle the http traffic so it won't use all of the bandwidth. So when our speed with our ISP was increased from 20 mpbs to 100 mpbs our download speeds stayed at 15 mbps. All I had to do was remove/or change the QOS policy.
Question We run asr9001 with XR 6.1.3, and we have a very long delay to
login w/ SSH 1 or 2 to the device compare to IOS device. After
investigation, the there is 1s delay between the client KEXDH_INIT and
the server (XR) KEXDH_REPLY. After debug ssh serv...
Introduction The purpose of this document is to demonstrate the Open
Shortest Path First (OSPF) behavior when the V-bit (Virtual-link bit) is
present in a non-backbone area. The V-bit is signaled in Type-1 LSA only
if the router is the endpoint of one or ...
Hi, I am seeing quite a few issues with patch install and wanted to
share my experience and workaround to this. Login to admin via CLI, then
access root with the “shell” command Issue “df –h” and you’ll probably
see the following directory full or nearly ...