Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

>992 Bytes Packets failing with PIX

Hi,

We have a 3-DES Tunnel between a PIX and Cisco 1721 Router. I am able to transfer packets less than\equal to 992 Bytes. As soon as i increase the packet size (using 'ping") to 993 bytes, it Fails.

However with a Tunnel between Cisco 1721 (EXACTLY same config) works fine with a VPN 3000 concentrator and i can send packets even 2000 bytes.

Issue is defintely with PIX. IS it dis-allowing fragmentation ? Howe can i fix this ?

Regards \\ Naman

  • Other Security Subjects
2 REPLIES
Silver

Re: >992 Bytes Packets failing with PIX

Hi,

Whats the MTU size defined on the inteface of the PIX? Please execute the following in config t:

mtu outside 1500

mtu inside 1500

Thanks,

Mynul

New Member

Re: >992 Bytes Packets failing with PIX

We were using Ping to test\verify this functionality and IDS Signature 2151 was denying packets. Disabling that Signature solved the problem.

365
Views
0
Helpful
2
Replies
This widget could not be displayed.