Hi Guys,
I'm hoping someone can help here.
I am getting these syn timeout issue on my asa 5510.
Jul 21 2008 16:19:04: %ASA-6-302013: Built outbound TCP connection 2576744 for outside:plug-2/25 (plug-2/25) to internal-vlan-20:coa-dun-db1/40643 (coa-dun-db1/40643)
Jul 21 2008 16:19:34: %ASA-6-302014: Teardown TCP connection 2576744 for outside:plug-2/25 to internal-vlan-20:coa-dun-db1/40643 duration 0:00:30 bytes 0 SYN Timeout
the following nat statements apply:
nat (internal-vlan-20) 1 access-list nat outside
!
access-list nat extended permit tcp object-group coa-dun-db object-group plug eq 123
access-list nat extended permit udp object-group coa-dun-db object-group plug eq ntp
access-list nat extended permit tcp object-group coa-dun-db object-group plug eq smtp
access-list nat extended permit ip any host x.x.64.133
access-list nat extended permit ip any host x.x.65.133
access-list nat extended permit tcp object-group coa-dun-back-net host sol-sco-hobbit1-ext eq 1984
access-list nat extended permit tcp object-group coa-dun-web-back host sol-sco-hobbit1-ext eq 123
access-list nat extended permit udp object-group coa-dun-web-back host sol-sco-hobbit1-ext eq ntp
access-list nat extended permit tcp host coa-dun-mon3-back any range www https
access-list nat extended permit udp host coa-dun-mon3-back host plug-1 eq domain
access-list nat extended permit udp host coa-dun-mon3-back host plug-2 eq domain
access-list nat extended permit tcp host coa-dun-mon3-back host plug-1 eq domain
access-list nat extended permit tcp host coa-dun-mon3-back host plug-2 eq domain
access-list nat extended permit ip x.x.93.32 255.255.255.248 host asa-ext
access-list nat extended permit ip x.x.86.72 255.255.255.248 host asa-ext
access-list nat extended permit icmp any any
Why are my connecitons not getting there.
Please help
Regards
Stephen
==========================
http://www.rconfig.com
A free, open source network device configuration management tool, customizable to your needs!
- Always vote on an answer if you found it helpful
