01-20-2010 08:48 PM - edited 03-11-2019 09:59 AM
Experiencing intermittent 443 connection issues to ASP. I am looking for best debugging tips for TCP which output would be directed to syslog server. Any suggestions??
01-20-2010 10:15 PM
Hello,
SInce your issue is intermittent, I would suggest you to set up capturess (By far the best troubleshooting tool) for interesting traffic and then export the binary captures using ASDM and then analyse them using network analyser like Wireshark (www.wireshark.org)
Here is how you can setup captures :
https://supportforums.cisco.com/docs/DOC-1222
You can get binary captures (PROVIDED you have ASDM access enabled for inside ifc of ASA) :
https://
Try to use packet length 1522 or above , since in usual packet captures you can only see first 68 bytes of data i.e. packets get truncated. Here is an example :
capture capout access-list test packet-len 1522 interface outside
Also, you can check service-policy and ASP drops for further troubleshooting.
HTH
Vijaya
01-21-2010 02:50 AM
Experiencing intermittent 443 connection issues to ASP. I am looking for best debugging tips for TCP which output would be directed to syslog server. Any suggestions??
Hi,
As per your query you need to capture packets in firewall interface as suggested by Vijaya then only you can identify the exact problem for dropping of TCP port 443 and also just check that TCP port 443 is working properly at the remote host or not.
Check out the below link for captureing the packets
http://www.cisco.com/en/US/products/ps6120/products_tech_note09186a0080a9edd6.shtml
If helpful do rate the valuable post.
Regards
Ganesh.H
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide