Re: PIX randomly stops traffic to DMZ

dwilkes · ‎11-12-2004

I am having an issue with my pix stopping traffic between inside to DMZ web server. Normally, I can get from an inside computer to the web server in the DMZ. Then all of a sudden it stops. The PC's can no longer get to the web server. I have to go to the firewall and do a reload command. Once it restarts, the PC's can get to dmz web server again. A few days later, it does it again. Any ideas?

Thanks ahead of time.

nkhawaja · ‎11-12-2004

Hi,

what version of PIX? any syslog messages? Can you share the relevant configs (hide the IP)

before you reboot the PIX, can you try

1- "clear xlat"

2- "clear arp"

see if either one resolves the issue

Thanks

Nadeem

dwilkes · ‎11-15-2004

Clear xlat and clear arp worked.

But I have to keep doing it.

Do you have any idea why?

Thanks alot.

nkhawaja · ‎11-15-2004

could be couple of reasons. but we need to narrow it down to whether "clear xlat" or "clear arp" is causing it. can you confirm this

dwilkes · ‎11-17-2004

clear xlat is the one that temporarily resolves the problem. I have to do it about twice a day.

cpu conn count is 6 in use, 41 most used

9s.pappas · ‎11-16-2004

What do you get from the following?

show cpu usage

show connection count

dwilkes · ‎11-17-2004

0% currently on cpu usage

6 in use 41 most used on conn count