Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
609
Views
2
Helpful
4
Replies

Duplicate TCP in ASA

Psmurali89
Spotlight
Spotlight

‎03-08-2023 04:35 AM

Hi All

I have configured VTI tunnel from office ASA to another ASA firewall in DC using BGP. The tunnel itself is working ok but when I try to connect to the server in office from a server in DC, I get the below in the firewall logs. I got NAT exception, access rules etc are all configured correctly. Am not sure what causing this issue and I cant reach the server. 

419992    192.168.10.35    38679    10.10.40.2    443    Duplicate TCP SYN from Tunnel-DC-VTI:  192.168.10.35/38679   to Inside:10.10.40.2/443 with different initial sequence number

Am not sure what's wrong here, any suggestions is much appreciated. 

 

4 Replies 4

MHM Cisco World
VIP
VIP

‎03-08-2023 04:39 AM

are you use two ISP interface in any ASA ??

0 Helpful

Psmurali89
Spotlight
Spotlight
In response to MHM Cisco World

‎03-08-2023 04:43 AM

Yes Outside Interface where the VTI tunnel terminates is connected to a switch where the ISP internet connection is. 

0 Helpful

MHM Cisco World
VIP
VIP
In response to Psmurali89

‎03-08-2023 04:49 AM

but you dont answer me you use one ISP or two ?

0 Helpful

Psmurali89
Spotlight
Spotlight
In response to MHM Cisco World

‎03-08-2023 07:21 AM

both firewalls connects to different ISP. So there's 2 ISP's. 

Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card