Can someone help me with the following messages in my VPN 3000 log? Basically the client connects and authenticates fine but he user has been experiencing eratic behavior with slow browsing and dismal file transfer performance (all of a sudden). After he connects I get this message in the logs:
You might have set a very small time as your SA lifetime. As a result of that frquent renegotiations might be taking place which are computationally expensive and might be degrading your throughput. Rechecking the configured lifetimes would be a good idea.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...