Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1237
Views
5
Helpful
1
Replies

Receiving a Syn packet during the timoeut of half closed connection

Go to solution
MohammadKayed
Level 1
Level 1

‎01-19-2021 06:42 PM

Hello,

 

I have a simple question to understand the behavior from the ASA side.

 

Once the connection is marked as half-closed , during that ( 30 seconds ) if the ASA will receive a syn packet related to the original connection what will happen exactly ? 

 

it will refresh the connection and raise the timeout back to 1hour ?

 

thanks

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Mohammed al Baqari
Level 11
Level 11

‎01-19-2021 10:36 PM

Hi,

ASA will start a new connection if it is received with different port
numbers. If it is received with same port numbers, ASA will drop it because
its out of sequence. In half closed ASA will expect FIN/FIN-ACK/ACK


***** please remember to rate useful posts

View solution in original post

1 Reply 1

Go to solution
Mohammed al Baqari
Level 11
Level 11

‎01-19-2021 10:36 PM

Hi,

ASA will start a new connection if it is received with different port
numbers. If it is received with same port numbers, ASA will drop it because
its out of sequence. In half closed ASA will expect FIN/FIN-ACK/ACK


***** please remember to rate useful posts
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card