Dear Friends,

One of the customer's ASA-5520 is getting disconect every 3-4 hours and found following outputs and errors.This ASA connetcs to MPLS(to acces remote branches) and ADLS(for internet)

Resource              Current         Peak          Limit                  Denied Context  

Syslogs [rate]           83             87470        N/A                       0 System

Conns                   35859        98666          280000                  0 System

Xlates                    266               919             N/A                       0 System

Hosts                     353               670             N/A                            0 System

Conns [rate]               29             409             N/A                       0 System

Inspects [rate]            11           57                  N/A                       0 System

Before disconnection happen ,I am getting following error

"SA-5-321001: Resource 'conns' limit of 280000 reached for system"

This is looks like a dos attack(pls correct me if I am wrong)I have done the follwoing steps to control the situation.

policy-map limit

class limit

  set connection conn-max 1 embryonic-conn-max 1 per-client-max 1

  set connection timeout embryonic 0:00:00 half-closed 0:00:00 tcp 0:00:00 dcd 0:00:01

Now my observation is

----------------------------------

When lookat Conns  "ciurrent" figurres keep increasing but "peak" figures doensn't increase  until "conns reach to 98666.

I would appriciate if anyone can tell me how to resolve this issue.

Is there any way to stop the increasing of "conns" figures??

many thanks