11-10-2014 12:07 PM - edited 03-11-2019 10:03 PM
Greetings, I am trying to find what is the default actions of the TCP normalizer in the ASA 5555x (9.1(3)). I can see in packet captures that the ASA is stripping some option flags (SACK) and I am also wondering if it is dropping none conforming packets etc etc. So far my research has shown that only specific traffic from specific systems is being stripped, in my case storage replication traffic. Thanks for any details, I am also going to open a TAC case and I will update this thread. Cheers!
11-10-2014 12:50 PM
You find much on the defaults in the config-gude:
11-10-2014 01:08 PM
Nice, thanks I can see the list of defaults. Oddly though the one flag that I am curious about (SACK) shows it's allowed by default yet some connections are having it stripped.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide