Re: inbound tcp connection denied

dstjames123 · ‎03-14-2006

For some reason when my users connect remotely using VPN to servers inside I get an error in the log like the following:

<162>Mar 14 2006 07:44:47: %ASA-2-106001: Inbound TCP connection denied from 192.168.1.6/524 to 192.168.1.209/1116 flags RST ACK on interface inside

It doesnt actually appear to be blocking anything because they are able to connect and do everything but I dont know why this is showing up in the logs.

Any ideas? Its an ASA5510.

jackko · ‎03-15-2006

just wondering the actual ports being used are matched in the log, which are tcp 524 and tcp 1116.

also, the log suggested that the traffic is originated from 192.168.1.6 and destined for 192.168.1.209. this appears to be within the a single subnet.

assuming 192.168.1.6 is really part of the vpn client pool, then it would be better to modify the pool, as the pool should not be overlapped with the asa inside/dmz subnet.

dstjames123 · ‎03-15-2006

I guess I should elaborate. 192.168.1.6 is a novell server internal. I also get this error when users vpn in and try to go to an internal web server it then just says 192.168.1.10 port 80 denied.

192.168.1.209 is one of the IP's reserved in my VPN pool.

I attached a copy of my config if anyone thinks that would be helpful.

Any help appritiated. Like I said this error doesnt appear to be stopping anyone from accessing anything but I assume I still have something configured wrong.

bahoosh · ‎06-21-2006

Did you resolve thiss problem? I am having the same issue on 7.2.1 code. It's frustrating.