Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
466
Views
0
Helpful
4
Replies

ASA 9.1(2)

Tuyen Nguyen
Level 1
Level 1

‎06-07-2013 09:40 AM - edited ‎03-11-2019 06:54 PM

Greetings

We encountered issues and wondering if anybody had the same or similar issues with this code.

We are sending print jobs utilizing TCP 1526/1527 ports from unix to unix server.  But for some reason when larger files are being transferred this crashes the unix server or files become corrupted.  In between we have Cisco ASA 5520 firewall running v 9.1(2).  We tried tweaking the TCP settings and loosening ACL, and no inspection drop but to no success. 

When taking ASA out the equation, everything works.

- 05:44 - Email from the business:

Good morning,

I need an update on where we are to resolving this issue.  This has a high

impact to my team as vendors rely on the information being printed as

supporting documents for their payments.  If we do not provide these

documents, vendors can deny these deductions given we have not provided

the paperwork to substantiate the deduction. This affects approximately

4000 vendors.

Samantha Brinker

Manager, Expense Payment Operations

Labels:
0 Helpful
4 Replies 4

Julio Carvajal
VIP Alumni
VIP Alumni

‎06-07-2013 09:58 AM

Hello Tuyen,

What do the logs on the ASA show?

Is there a way that you could do a capture between the ASA interfaces and an ASP capture,

Let me know,

Regards,

Hey remember to rate all of the helpful posts, as important as a thanks (keep us motivated)

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC
0 Helpful

Tuyen Nguyen
Level 1
Level 1
In response to Julio Carvajal

‎06-07-2013 11:19 AM

Thanks for responding.

Nothing abnormal in the logs other then FIN's

Deny TCP (no connection) from 192.168.65.11/1526 to 42.108.51.10/32915 flags FIN ACK

Bunch of TCP DUP ACK for re-transmission in the captures but that looks normal.

0 Helpful

Julio Carvajal
VIP Alumni
VIP Alumni
In response to Tuyen Nguyen

‎06-07-2013 12:12 PM

Hello Tuyen,

Without seeing the captures I can't help that much,

Have you set the TCP state-bypass feature for this traffic?

Regards,

Hey remember to rate all of the posts, this keeps us motivated to keep replying.

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC
0 Helpful

Tuyen Nguyen
Level 1
Level 1
In response to Julio Carvajal

‎06-19-2013 12:23 PM

Thanks for your assistance the TCP state-bypass feature worked beautifully.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card