Hello,
I have Cisco Router with the below config:
ip inspect name SDM_MEDIUM appfw SDM_MEDIUM
ip inspect name SDM_MEDIUM cuseeme
ip inspect name SDM_MEDIUM dns
ip inspect name SDM_MEDIUM ftp
ip inspect name SDM_MEDIUM h323
ip inspect name SDM_MEDIUM https
ip inspect name SDM_MEDIUM icmp
ip inspect name SDM_MEDIUM imap reset
ip inspect name SDM_MEDIUM pop3 reset
ip inspect name SDM_MEDIUM netshow
ip inspect name SDM_MEDIUM rcmd
ip inspect name SDM_MEDIUM realaudio
ip inspect name SDM_MEDIUM rtsp
ip inspect name SDM_MEDIUM esmtp
ip inspect name SDM_MEDIUM sqlnet
ip inspect name SDM_MEDIUM streamworks
ip inspect name SDM_MEDIUM tftp
interface FastEthernet0/0
description $FW_OUTSIDE$
ip address dhcp
ip access-group 103 in
ip access-group 109 out
ip nat outside
ip inspect SDM_MEDIUM out
ip virtual-reassembly
I am facing problem with Outlook Users in to my Lan Network. They loose connectivity to Exchange Server Intermittently. When they connect their
Laptops directly on BroadBand line, it works perfect.
I can see following logs:
010303: Jul 25 15:29:41.844: %SEC-6-IPACCESSLOGP: list 103 denied tcp X.X.X.X(80) -> X.X.X.X (2551), 1 packet
010304: Jul 25 15:29:43.848: %SEC-6-IPACCESSLOGP: list 103 denied tcp X.X.X.X (80) -> X.X.X.X (2561), 1 packet
010305: Jul 25 15:29:45.852: %SEC-6-IPACCESSLOGP: list 103 denied tcp X.X.X.X (443) -> X.X.X.X (2557), 1 packet
010303: Jul 25 15:29:41.844: %SEC-6-IPACCESSLOGP: list 103 denied tcp X.X.X.X (443) -> X.X.X.X (2551), 1 packet
010304: Jul 25 15:29:43.848: %SEC-6-IPACCESSLOGP: list 103 denied tcp X.X.X.X (80) -> X.X.X.X (2561), 1 packet
Users can connect to outlook after some time automatically. I suspect this is issue of IP Inspect for Half Opened Session.
Can anyone please suggest the way ahead?
Thanks
Rahul
