Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
5950
Views
0
Helpful
2
Replies

snp_drop_none

Go to solution
lcaruso
Level 6
Level 6

‎08-18-2011 12:02 PM - edited ‎03-11-2019 02:13 PM

Hi,

What does this message on the end of the logged line mean?

Aug 18 2011 13:16:55: %ASA-6-302014: Teardown TCP connection 37247 for outside:192.168.26.125/3618 to inside:172.26.1.5/18082 duration 0:00:00 bytes 0 <snp_drop_none>

ASA 5505 v8.4(2). Thanks.

Also, can someone please confirm that

TCP Reset-I

TCP Reset-O

means that the connection was reset from the Inside host and Outside host, respectively?

Thanks.

1 person had this problem
Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
varrao
Level 10
Level 10

‎08-18-2011 07:37 PM

Well the syslog guide as well does not indicate any such syslog, you might be hitting:

http://tools.cisco.com/Support/BugToolKit/search/getBugDetails.do?method=fetchBugDetails&bugId=CSCta83553

But this bug was supposed to be fixed in 8.3, so not really sure about the reason, I suggest if the logs that you get are huge in number open a TAC case for it.

THe TCP-Reset-I mean that the reset was from the host on the higher security level

TCP-Reset-O means the reset came from the host on the lower security level.

Its not always isnide, outside, the I and O are just reference points, they do not mean inside, outside.

It could be inside and dmz as well, depends upon the security levels.

Thanks,

Varun

Thanks,
Varun Rao

View solution in original post

0 Helpful
2 Replies 2

Go to solution
varrao
Level 10
Level 10

‎08-18-2011 07:37 PM

Well the syslog guide as well does not indicate any such syslog, you might be hitting:

http://tools.cisco.com/Support/BugToolKit/search/getBugDetails.do?method=fetchBugDetails&bugId=CSCta83553

But this bug was supposed to be fixed in 8.3, so not really sure about the reason, I suggest if the logs that you get are huge in number open a TAC case for it.

THe TCP-Reset-I mean that the reset was from the host on the higher security level

TCP-Reset-O means the reset came from the host on the lower security level.

Its not always isnide, outside, the I and O are just reference points, they do not mean inside, outside.

It could be inside and dmz as well, depends upon the security levels.

Thanks,

Varun

Thanks,
Varun Rao
0 Helpful

Go to solution
lcaruso
Level 6
Level 6
In response to varrao

‎08-19-2011 05:47 AM

Thanks much.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card