03-14-2006 05:24 AM - edited 03-09-2019 02:14 PM
For some reason when my users connect remotely using VPN to servers inside I get an error in the log like the following:
<162>Mar 14 2006 07:44:47: %ASA-2-106001: Inbound TCP connection denied from 192.168.1.6/524 to 192.168.1.209/1116 flags RST ACK on interface inside
It doesnt actually appear to be blocking anything because they are able to connect and do everything but I dont know why this is showing up in the logs.
Any ideas? Its an ASA5510.
03-15-2006 04:11 AM
just wondering the actual ports being used are matched in the log, which are tcp 524 and tcp 1116.
also, the log suggested that the traffic is originated from 192.168.1.6 and destined for 192.168.1.209. this appears to be within the a single subnet.
assuming 192.168.1.6 is really part of the vpn client pool, then it would be better to modify the pool, as the pool should not be overlapped with the asa inside/dmz subnet.
03-15-2006 06:01 AM
I guess I should elaborate. 192.168.1.6 is a novell server internal. I also get this error when users vpn in and try to go to an internal web server it then just says 192.168.1.10 port 80 denied.
192.168.1.209 is one of the IP's reserved in my VPN pool.
I attached a copy of my config if anyone thinks that would be helpful.
Any help appritiated. Like I said this error doesnt appear to be stopping anyone from accessing anything but I assume I still have something configured wrong.
06-21-2006 07:30 AM
Did you resolve thiss problem? I am having the same issue on 7.2.1 code. It's frustrating.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: