Equipment is 2x Catalyst 6509 WS-C6509 (R7000) processor (revision 3.0) with 458752K/65536K bytes of memory.
(s222_rp-ADVIPSERVICESK9_WAN-M), Version 12.2(18)SXF17a, RELEASE SOFTWARE (fc1)running FWSM on both firewalls in active/standby mode.
Hardware: WS-SVC-FWM-1, 1024 MB RAM, CPU Pentium III 1000 MHz
Flash STI Flash 7.2.0 @ 0xc321, 20MB.
Running external DMZ for customers with voice services and MS Lync services on FWSM. The FWSM became unresponsive from time to time.ADSM connection to FWSM was lost same as continual PING from inside network to inside interface. Pings were timeout 10times and then started again work and this repeated continually.
From logs on c6509 and FW we couldn’t see any failures or warnings so we have continued troubleshooting in Local network.
We have found that from Cisco and linux boxes the ping to FW inside interface is ok, only from Windows boxes ping is affected.
This leaded us to idea that MTU might bet the problem. But MTU was setup 1530 on LAN so that was not the case. We decided to failover FWSM to secondary unit by “no failover active command” run on active unit, but this didn’t fix the issues, connectivity from outside to DMZ and also from inside to FW still was not responding.
We decided lastly to reload the 6509 - after doing so everything was fine. We just need an explanation as to what caused the issue please...
Please find attached a pcap trace and tech supports from FWSM and 6509. Also there are logs after the reload.
We are pleased to announce availability of Beta software for 16.6.3. 16.6.3 will be the second rebuild on the 16.6 release train targeted towards Catalyst 9500/9400/9300/3850/3650 switching platforms. We are looking for early feedback from custome...