cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
735
Views
0
Helpful
4
Replies

difference ASA 8.0.2 and 8.0.4

lukasdrbo
Level 1
Level 1

Hi,

i have strange problem with access by ipsec client: with ASA 8.0.2 all is ok but with ASA 8.0.4 some TCP connection through ipsec client arent association (rdp, sql, etc..). With SSL client on ASA 8.0.4 all traffic is ok too.

Sometimes i logging deny tcp (no connection).

Do you have any idea where is problem please ?

lukas

4 Replies 4

purohit_810
Level 5
Level 5

Hi,

Can you see in Caveats? is there any Caveats open?

I haven't perfect error from you so i can't say.

Thanks,

Dharmesh Purohit

Hi,

maybe this:

Deny TCP (no connection) from vpn_range to lan_srv/3389 flags ACK on interface ext

Deny TCP (no connection) from vpn_range to lan_srv/3389 flags FIN PSH ACK on interface ext

but i havent idea. its rdp to one server, rdp to others servers are ok. if i reboot ios to 8.0.2, this connection to lan_srv is ok. i dont understand to it :-(. (without changing cfg of course)

thx,

Lukas

solution is disable IP Compression in the ipsec group-policy

lukas

Review Cisco Networking for a $25 gift card