Problem with FTP that timeout after setting all the Cisco Pix 506E......
I'm having alot of problem with FTP......
This is how my network was setup. I have a firewall, Cisco Pix 506E which is connected to a Cisco 2950 switch.
I used NAT where it translate my Private IP to Public IP. I've open up Port 21 on my Firewall for FTP but it seem to give me problem......
Sometime I can connect and upload large files without any timeout, sometime, I can't upload files at all or it will timeout after 10% or 20% or whatever size.....
I've post in other forum and the expert told me it is due to the speed mismatch.
They ask me to ensure that my outside interface is set to 100BaseT FD.
I've done that. But I have this problem. I set my outside and inside interface to 1ooBaseT FD for the Firewall. Then I set the ports on my switch to 100Base T FD. When I do that, my server network card - eth0 show that it can only run on 100BaseT HD as is set a no autonegotiation. There is no way I can force the eth0 to run on 100BaseT FD.
But when I change the switch ports to 100 for speed but leave the Duplex as auto, my eth0 run on 100BaseT FD.
Basically I have confirmed that my firewall is connected to the router at 100BaseT FD (and my router is in 100Base).
I've set my firewall inside to connect at auto.
On my switch, I've set all the ports to run on 100 but leave Duplex setting to Auto.
My server eth0 is running on autonegotiation 100BaseT FD
But I still getting problem with my FTP. Sometime I can upload without problem, sometime I can't, it gets time out. I've tried using multiple FTP clients, I've tried connecting on ADSL and Cable on different venue. I've ask few of my friends to try and they too get the same problem.
I seem to get alot of this under the outside but 0 on the inside.
I asked someone what does that mean and if I should be concern and I was informed that I should be very concern, they said that for outsider CRC error, it means there is something wrong with the cables connected from the IDC router to my firewall and I was advised to ask the IDC to change the cable that connect my firewall to their router.
Re: Problem with FTP that timeout after setting all the Cisco Pi
crc basically is a mean for a device verifying the received data if there is any error during transmission.
according to cisco:
The number of Cyclical Redundancy Check errors. When a station sends a frame, it appends a CRC to the end of the frame. This CRC is generated from an algorithm based on the data in the frame. If the frame is altered between the source and destination, the security appliance notes that the CRC does not match. A high number of CRCs is usually the result of collisions or a station transmitting bad data.
i guess the issue is related to duplex mismatch between the pix and the outside interface connected device. also, verify the cable whether it's faulty or not.
DocumentationCode download linksGoalRequirementLimitationsSupported ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and UCS-E Blades:Step by Step ConfigurationConfigure one of the connectivity options to access the Cisco IMC from the n...
Firepower Threat Defense (NGFWv) on UCS E-series - Transparent Mode in HA
DocumentationCode download linksGoalRequirementLimitationsSupported ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and UCS-E Blades:Step by Step ConfigurationCo...
I am currently unable to specify "crypto keyring" command when configuring VPN connection on my cisco 2901 router.
The following licenses have been activated on my router :