Buy or Renew
Buy or Renew
NOTICE: You can now engage in the community. Learn about the great new Cisco Umbrella content.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
517
Views
0
Helpful
6
Replies

MSSQL query running slowly through PIX running V7.0

Paul_Westhead
Level 1
Level 1

‎05-11-2006 05:26 AM - edited ‎02-21-2020 12:53 AM

having just setup a new PIX using ACL based security, I have come across a problem with SQL querying VERY slowly through the PIX. We also use other protocols such as RDP for remote management of the server on the far side of the PIX which runs fine. The running config is as follows:

 

 

Please see Attached file for config

 

The query is originating at the 10.12.X.X address and is querying a server on the other side which is 172.16.0.X.

 

If we directly patch the server and PC both on the saem subnet the query is almost instant, but if we put the PIX in the way it runs a query in about 1minute 30 secs.

 

Thanks for reading this and all the help.

 

 

 

0 Helpful
6 Replies 6

dmarcos.scc
Level 1
Level 1

‎05-15-2006 01:56 AM

I have same problem. I upgrade the pix from 6.3 to 7.0. In 6.3 all works fine, but in 7.0 mssql queries are very slowy.

Regards,

0 Helpful

globalnettech
Level 5
Level 5
In response to dmarcos.scc

‎05-15-2006 03:06 AM

Hello,

you might want to try and change the MTU sizes, e.g.:

mtu LAN 1350

mtu DB_VLAN 1350

or

mtu LAN 1452

mtu DB_VLAN 1452

Check if this makes a difference, otherwise let me know, and we'll look further.

GNT

0 Helpful

Paul_Westhead
Level 1
Level 1
In response to globalnettech

‎05-16-2006 05:16 AM

Hi,

unfortunately both changes were not successful. We are running both SQL 2000, and 2005. The query is a select * from syscomments on the master database.

Also the query times have become longer, I don't know if this is related, no changes have been made to the server.

Hope this helps.

Cheers

Paul.

0 Helpful

federico_caminos
Level 1
Level 1
In response to Paul_Westhead

‎05-16-2006 07:08 AM

Hello Paul :

I have looked into your posted config . And I would like to ask you if it is complete full with all the commands .

In my opinion your posted config is missing some configuration to allow connections from the internal subnet LAN to the external DB_LAN interface and to allow returning traffic also, something like

nat (LAN) 0 .....

or something like

nat (LAN) 1 ...

global (DB_VLAN) 1 ...

Post your comments.

0 Helpful

Paul_Westhead
Level 1
Level 1
In response to federico_caminos

‎05-18-2006 12:59 PM

Those statements as well as the isakmp and ipsec statements have been removed. This made no difference. We have upgraded to 7.1 which has resolved the problem.

0 Helpful

reytan
Level 1
Level 1
In response to Paul_Westhead

‎09-07-2006 08:29 AM

May I ask which 7.1(x) release you used for the upgrade ?

We are experiencing the same behaviour (i.e dramatic slowdown) with PIX515E v7.1(1) and MS-SQL traffic.

Cheers

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card