Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
513
Views
0
Helpful
1
Replies

ASA not working

rgk013013
Level 1
Level 1

‎05-31-2011 08:46 AM - edited ‎03-11-2019 01:40 PM

Hi ,

I have an asa firewall when i keep in the network it works fine but after 1 or 2 hrs we will not able to reach the firewall all the traffic will be blocked

As i checked i could find the crc errors in the inside interface then i have changed the duplex and speed to auto what could be reason for this issue

below is the interafce details

      5 minute drop rate, 0 pkts/sec
Interface GigabitEthernet0/1 "inside", is up, line protocol is up
  Hardware is i82546GB rev03, BW 1000 Mbps, DLY 10 usec
    Full-Duplex(Full-duplex), 100 Mbps(100 Mbps)
    Input flow control is unsupported, output flow control is unsupported
    Description: --GE Network--
    MAC address 503d.e52b.9ead, MTU 1500
    IP address x.x.x.x, subnet mask x.x.x.x
    3666894 packets input, 934643608 bytes, 0 no buffer
    Received 696793 broadcasts, 0 runts, 0 giants
    12379 input errors, 12379 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort
    0 L2 decode drops
    3321064 packets output, 1207854198 bytes, 0 underruns
    0 pause output, 0 resume output
    0 output errors, 0 collisions, 2 interface resets
    0 late collisions, 0 deferred
    0 input reset drops, 0 output reset drops, 0 tx hangs
    input queue (blocks free curr/low): hardware (255/230)
    output queue (blocks free curr/low): hardware (255/251)
  Traffic Statistics for "inside":
    3666894 packets input, 860209007 bytes
    3321065 packets output, 1142605027 bytes
    404188 packets dropped
      1 minute input rate 16 pkts/sec,  1230 bytes/sec
      1 minute output rate 0 pkts/sec,  37 bytes/sec
      1 minute drop rate, 9 pkts/sec
      5 minute input rate 15 pkts/sec,  1319 bytes/sec
      5 minute output rate 0 pkts/sec,  37 bytes/sec
      5 minute drop rate, 9 pkts/sec
Interface GigabitEthernet0/2 "", is administratively down, line protocol is down
  Hardware is i82546GB rev03, BW 1000 Mbps, DLY 10 usec
    Auto-Duplex, Auto-Speed
    Input flow control is unsupported, output flow control is unsupported
    Available but not configured via nameif
    MAC address 503d.e52b.9eae, MTU not set
    IP address unassigned
    0 packets input, 0 bytes, 0 no buffer
    Received 0 broadcasts, 0 runts, 0 giants
    0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort
    0 L2 decode drops
    0 packets output, 0 bytes, 0 underruns
    0 pause output, 0 resume output
    0 output errors, 0 collisions, 1 interface resets
    0 late collisions, 0 deferred
    0 input reset drops, 0 output reset drops, 0 tx hangs
    input queue (blocks free curr/low): hardware (255/255)
    output queue (blocks free curr/low): hardware (255/255)

Labels:
0 Helpful
1 Reply 1

varrao
Level 10
Level 10

‎05-31-2011 09:01 AM

Hi Jibin,

CRC errors are because of media issues, try changing the csbles or changing the port on the ASA. And yes the speed and duplex should be auto on the ASA as well as the downstream device.

Thanks,

Varun

Thanks,
Varun Rao
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card