Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
588
Views
0
Helpful
3
Replies

TCP/UDP connection High

somnath21
Level 1
Level 1

‎07-10-2008 11:24 PM - edited ‎03-11-2019 06:12 AM

Hi,

We have Cisco ASA 5520.Nowadays we are getting one problem that is TCP/UDP connection fluctuating continuously.

I am checking in ASDM, suppose now showing total no. of connection 50 within 2 sec it's reaching 3000 and again come back to normal.

It's happening continuously.

What might be the reason for that? Pls assist too resolve this issue.

Thanx,

somnath

Labels:
0 Helpful
3 Replies 3

a.alekseev
Level 7
Level 7

‎07-11-2008 06:18 AM

probably you have worms...

try to find suspicious connections

"sh conn"

[Pls RATE if HELPS]

0 Helpful

purohit_810
Level 5
Level 5

‎07-11-2008 06:26 AM

Can you put sniffer and check which host or application does that?

Thanks,

Dharmesh Purohit

0 Helpful

Magnus Mortensen
Cisco Employee
Cisco Employee

‎07-11-2008 09:10 PM

If the connection spikes up to 3000 and then drops sharply 30 seconds later, that is most likely a flood of TCP connection (DoS Attack) that result in short lived, half-open TCP conns. Please gather SYSLOGs during the spikes and provide a sample for us to take a look at.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card