cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
526
Views
0
Helpful
2
Replies

>992 Bytes Packets failing with PIX

mnlatif
Level 3
Level 3

Hi,

We have a 3-DES Tunnel between a PIX and Cisco 1721 Router. I am able to transfer packets less than\equal to 992 Bytes. As soon as i increase the packet size (using 'ping") to 993 bytes, it Fails.

However with a Tunnel between Cisco 1721 (EXACTLY same config) works fine with a VPN 3000 concentrator and i can send packets even 2000 bytes.

Issue is defintely with PIX. IS it dis-allowing fragmentation ? Howe can i fix this ?

Regards \\ Naman

2 Replies 2

mhoda
Level 5
Level 5

Hi,

Whats the MTU size defined on the inteface of the PIX? Please execute the following in config t:

mtu outside 1500

mtu inside 1500

Thanks,

Mynul

We were using Ping to test\verify this functionality and IDS Signature 2151 was denying packets. Disabling that Signature solved the problem.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: