cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
410
Views
0
Helpful
4
Replies

Pix 515 - Periodically unable to route traffic out "outside" int

johnelliot
Level 1
Level 1

Hi,

Got a problem with one of our Pix 515's - A couple times a day, it will stop routing traffic out of the outside Int(To the Internet) - Attempting to ping anything results in:

ping dns_servers_ip

Sending 5, 100-byte ICMP Echos to dns_servers_ip, timeout is 2 seconds:

?????

Success rate is 0 percent (0/5)

Reloading the device resolves the issue:

ping dns_servers_ip

Sending 5, 100-byte ICMP Echos to dns_servers_ip, timeout is 2 seconds:

!!!!!

Success rate is 100 percent (5/5), round-trip min/avg/max = 1/4/10 ms

Have tried replacing eth cable....did not resolve problem.

Version: 7.0(2)

Hoping someone has come across this issue before?

4 Replies 4

amritpatek
Level 6
Level 6

The problem could be that the translation table getting full and thats why none else traffic is able to go out, and the traffic starts to flow again when the Pix is rebooted because the translation table gets clear. This could also be a result of a possible virus or DoS attack. Take the syslogs of Pix in informational level to check for the traffic flowing through it.

reeddavid
Level 1
Level 1

I had a similar problem, eventually found it was ip address conflict. Make sure nothing else has same IP as your Pix

sounds like arp poisoning of sorts, have you applied the sysopt no proxy arp inside command? If not that may resolve the issue.

You can check the arp entries when it works and when it doesn't work

satya

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: