I have 2 locations with separate Internet connections. I have a web admin at each location connecting to a https performance monitor application at a remote location. At branch 1 the appliction works good with no errors on the PIX. At branch 2 the application creates thousands of messages like Inbound TCP connection denied from x.x.x.x/443 to x.x.x.x/38000-45000 flags FIN PSH ACK on interface outside. Branch 1 has a PIX 525 ver 6.0(1)and the client is on a different subnet than the PIX. Branch 2 has a PIX 506E ver 6.3(3) with the client on the same subnet as the PIX. Also note that the default gateway of the client is not the PIX.
Any idea why the same application gives different results at each branch?
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...