Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
166
Views
5
Helpful
1
Replies

Denial of Service on Outside Interface

Fazil Haneefa
Level 1
Level 1

‎03-22-2016 03:36 AM - edited ‎03-12-2019 12:31 AM

Hi Guys,

Today I encountered a strange problem with our WAN firewall (ASA 5520). The clients from outside were not able to connect to the services inside. Even from the WAN router I was not able to ping the services inside for about 40 minutes. The solar winds showed me that there was lot of discards on the outside interface, around 300 k during this time.

Any idea how to investigate what really happened during this time period. I am confused now and I have to give an explanation to the higher management and I didn't do anything but it solved by its own after this time period.

Labels:
Preview file
47 KB
0 Helpful
1 Reply 1

Aditya Ganjoo
Cisco Employee
Cisco Employee

‎03-22-2016 03:46 AM

Hi Fazil,

There can be a lot of reasons behind this.From the inside were we able to reach the internet ?

Also what was the resource usage on the ASA as in:

show service-policy
show asp drop
show counters
show traffic
show interface
show process
show conn count
show xlate count
show perfmon

Do you have syslogs at the time of the issue ?

We need to check all this info and correlate them.

Regards,

Aditya

Please rate helpful posts.

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card