Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

connection with Uf flags when server crash

Hi, pix or asa 7.0(4) version.

After a server crash event, a client send a fin packet and the connection moves to Uf flags state in the show conn.

After the server has been restored the connection is still present on the show conn and the only way to remove it is the clear local-host command on the pix.

It seems that the connection with Uf follow the timeout conn settings and there's no way to use the half-closed timeout to speed-up the conn automatic removing.

Could you help me ?

thank you in advance

1 REPLY
Silver

Re: connection with Uf flags when server crash

The reason why you are seeing the flags with parameters is pix is trying to build up session table. Let me give you another example.

Inside: Outside Flags

----------------------------------

SYN --> saA

<-- SYN + ACK A

ACK --> U

<-- Data UI

Data --> UIO

FIN --> Uf

<-- FIN + ACK UfFR

ACK --> UfFRr

I hope this answer your question.

236
Views
0
Helpful
1
Replies