Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
913
Views
0
Helpful
3
Replies

Can ASA ignore TCP reset messages

carl_townshend
Spotlight
Spotlight

‎09-19-2012 08:30 AM - edited ‎03-11-2019 04:56 PM

Hi all

is it possible to get my ASA firewall to ignore incoming TCP resets coming from outside ?

cheers

Labels:
0 Helpful
3 Replies 3

Karsten Iwen
VIP
VIP

‎09-19-2012 09:27 AM

You could configure state-bypass for your traffic in question. But why do you want to ignore TCP-RST in the ASA?

-- 
Don't stop after you've improved your network! Improve the world by lending money to the working poor:
http://www.kiva.org/invitedby/karsteni

0 Helpful

carl_townshend
Spotlight
Spotlight
In response to Karsten Iwen

‎09-20-2012 03:57 AM

because we are having issues using our corporate web proxy in China, the vendor said to do this and it should work?

cheers

0 Helpful

Karsten Iwen
VIP
VIP
In response to carl_townshend

‎09-20-2012 05:33 AM

Ok, then the state-bypass is *not* an option. I assume you need a dedicated box in front of the firewall that woould filter the RST out. But I have no idea which vendor can be used for that.

-- 
Don't stop after you've improved your network! Improve the world by lending money to the working poor:
http://www.kiva.org/invitedby/karsteni

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card