cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
9901
Views
5
Helpful
5
Replies

%ASA-6-302014: Teardown TCP connection 9352818

cponton01
Level 1
Level 1

Anyone know what this syslog message from the ASA means?

5 Replies 5

rvarelac
Level 7
Level 7

Hi 

 

. %ASA-6-302014: Teardown TCP connection id for interface:real-address/real-port [(idfw_user)] to interface:real-address/real-port [(idfw_user)] duration hh:mm:ss bytes bytes [reason] [(user)]

A TCP connection between two hosts was deleted. The following list describes the message values:

id --A unique identifier

interface, real-address, real-port--The actual socket

duration--The lifetime of the connection

bytes--The data transfer of the connection

user--The AAA name of the user

idfw_user--The name of the identity firewall user

?reason--The action that causes the connection to terminate.

 

Hope this help,

 

Regards,

 

 

kapydan88
Level 4
Level 4

%ASA-6-302014

 

%ASA-6-302014: Teardown TCP connection 445 for inside:10.19.0.7/636 to identity:192.168.130.34/4460 duration 0:00:00 bytes 1 51 TCP Reset by appliance

 

is it possible to resolve this issue?

It is not clear to me whether you believe that there is some issue about the log message or whether your issue is about the attempt to connect to 192.168.130.34. Can you provide clarification?

 

HTH

 

Rick

HTH

Rick

This problem was in ssl cipher...

 

ssl cipher default custom "AES256-GCM-SHA384:AES256-SHA256:AES128-GCM-SHA256:AES128-SHA256:AES256-SHA:AES128-SHA" - it is solution

Thank you for the update. Glad that you were able to find the solution to your own issue. Always enjoy discussions where this happens. And thank you for providing the solution to your issue. So a well deserved +5 for that.

 

HTH

 

Rick

HTH

Rick