01-07-2015 11:09 AM - edited 03-11-2019 10:18 PM
Dear Experts,
I have just involved into the mid of one project...They are using Cisco ASA 5510(System image file is asa 825-k8.bin). Setup is like:-
1) ASA Eth0/0 --> connected with Internet Link (Outside)
2) ASA Eth0/1 --> connected with MPLS Router (MPLS)
3) ASA Eth0/2 --> Connected with Core Switch - Cisco
i) Eth0/2.1 --> MZ1 (Management)
ii) Eth0/2.2 --> MZ2 (Servers)
4) ASA Eth0/3 --> Connected with Other "Third party/Other firewall" (DMZ)
5) ASA Management0/0 --> Connected with link for remote monitoring.
LAN users are connected through "Third Party/Other Firewall". problem is when we are terminating the internet link on Eth0/0 interface ...after 4-5 minutes ...there are huge drops started towards internet & on the MZ2 servers from LAN PCs. We also checked by connecting the internet link directly on other firewall ..but in this scenario everything working fine.
Where could be the issue on ASA, Please help to diagnose and fix the issue.
Rgds
***
01-07-2015 12:04 PM
Have you check the Speed/duplex being negotiated?
Do you see errors on the interfaces?
Use the show interface to diagnose, look for the speed being negotiated and look for possible overruns or underruns on the interfac .
Mike.
01-07-2015 12:33 PM
Hi Mike,
Duplex/Speed , Interface errors has already been checked ...all fine.
Rgds
01-09-2015 11:56 PM
Sounds like the interface is getting saturated or the throughput is being reached. The 5510 only does around 350mbps aggregate throughput and you don't actually get 100% of that even though you have gig interfaces. I would check the connection count also when the problem is occurring. Post the interface details and the connection count when drops are occurring.
Hope this helps!
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide