Hi All,

i am getting below log on firewall due to this my virtual application on public internet is working very slow.

106015          198.241.159.x 443          10.x.x.x 1650          Deny TCP (no connection) from 198.241.159.x/443 to 10.x.x.x/1650 flags PSH ACK  on interface xyz

i have already try with tcp-state bypass.

asa(config)# access-list vitest permit tcp 10.x.x.0 255.255.255.0$

asa(config)# class

asa(config)# class-map vimap

asa(config-cmap)# match access-list vitest

asa(config-cmap)# exit

asa(config)# policy-map global_policy

asa(config-pmap)# class vimap

asa(config-pmap-c)# set connection advanced-options tcp-state-bypass

asa(config-pmap-c)#

i have already go through below link

https://supportforums.cisco.com/thread/2106310

https://supportforums.cisco.com/thread/2125757