I have two servers, one in my DMZ and one on the internal network. All IP traffic is allowed between the DMZ and the internal network. These two servers talk just fine for most of the time, but when they need to set up a particular connection, the connection times out. This is what is logged in the Pix for this connection:
302013: Built outbound TCP connection 32328306 for DMZ:10.1.241.72/80 (10.1.241.72/80) to inside:10.1.253.16/3259 (10.1.253.16/3259)
302014: Teardown TCP connection 32328306 for DMZ:10.1.241.72/80 to inside:10.1.253.16/3259 duration 0:00:05 bytes 679 TCP FINs
Any one familiar with this? Why does the pix just shut it down? This is not the first time I have seen this error.
The PIX is tearing the connection down because we saw the TCP FIN transaction (FIN, FIN-ACK, ACK) occur between the two hosts. So, to answer your question, the PIX is not shutting anything down. Looks like the application is the one closing the connection. The last part of the teardown message will always tell you why the PIX is removing the conn from the conn table. Hope this helps.
DocumentationCode download linksGoalRequirementLimitationsSupported ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and UCS-E Blades:Step by Step ConfigurationConfigure one of the connectivity options to access the Cisco IMC from the n...
Firepower Threat Defense (NGFWv) on UCS E-series - Transparent Mode in HA
DocumentationCode download linksGoalRequirementLimitationsSupported ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and UCS-E Blades:Step by Step ConfigurationCo...
I am currently unable to specify "crypto keyring" command when configuring VPN connection on my cisco 2901 router.
The following licenses have been activated on my router :