Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2221
Views
0
Helpful
2
Replies

TCP packet buffer full

bma
Level 1
Level 1

‎05-04-2007 07:58 AM - edited ‎03-11-2019 03:09 AM

Hi

When use show asp drop in the pix 525, ver 7.0, if TCP packet buffer full gets big jump, what is mean?

Thanks

ben

Labels:
0 Helpful
2 Replies 2

bwalchez
Level 4
Level 4

‎05-10-2007 10:51 AM

TCP packet buffer full :

This counter is incremented and the packet is dropped when the security appliance receives an out-of-order TCP packet on a connection, and there is no buffer space to store this packet. Typically TCP packets are put into order on connections that are inspected by the security appliance or when packets are sent to an SSM for inspection. There is a default queue size,

and when packets in excess of this default queue size are received they will be dropped.

Try to use the TCP normalization feature of the PIX and increase the queue-limit for the buffer for out-of-order packets. The queue-limit could be increased to max 250 and is 0 by default.

You may refer to :

http://www.cisco.com/univercd/cc/td/doc/product/multisec/asa_sw/v_7_1/cmd_ref/qr_711.htm#wp1598973

0 Helpful

vitripat
Level 7
Level 7
In response to bwalchez

‎05-10-2007 11:10 AM

queue-limit can only be increased on ASA and not on PIX firewalls.

Regards,

Vibhor.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card