degraded performance VPN clients in network extension mode
Since a couple of weeks i'm seeing degraded services on my 3030 concentrator (1 SEP). It will result in big packets being dropped (1500 bytes), i first suspected the internet circuit but after troubleshooting the private interface i see the packets already being dropped at the private interface. I have about 100 sessions coming from 3002 HW clients in extension mode. My worries are that 1 sep might not be enough for the session, but i'm unable to find information to confirm this.
The only changes made since it went into production are that we are only adding more and more these days.
Re: degraded performance VPN clients in network extension mode
Hi Kanishka, thanks for the tips but i do not think fragmentation being the issue, during a day it will not drop packets for several hours, but at certain times it will do (i suspect when there is a lot of traffic going thru the concentrator).
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...