Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
6184
Views
0
Helpful
1
Replies

Inbound TCP connection denied from.....to....flags SYN on interface inside

csavgroup
Level 1
Level 1

‎04-18-2011 07:30 PM - edited ‎03-06-2019 04:40 PM

We have a new ASA5510 firewall (192.168.2.2) configured as a PPPoE connection.  In the firewall, there are few static routes as follows:

route outside 0.0.0.0 0.0.0.0 11.22.33.55 1

route inside 192.168.1.0 255.255.255.0 192.168.2.1 1

ASA5510 firewall can ping or access anything located at General Office 192.168.1.0/24.  However, PC 192.168.2.8 fault to access anthing located at Genral Office 192.168.1.0/24.  In ASA5510 firewall, it returns error as follows:

Inbound TCP conection denied from 192.168.219.8/1880 to 192.168.1.1/80 flags SYN interface inside

or

Inbound TCP conection denied from 192.168.219.8/1880 to 192.168.1.1/21 flags SYN interface inside

Anyone can help me?

The ASA5510 firewall performs very simple job.  Just PPPoE connection and few static routes, but still fault........

Labels:
Preview file
24 KB
0 Helpful
1 Reply 1

rizwanr74
Level 7
Level 7

‎04-24-2011 05:19 PM

host at 192.168.2.8 does not need go to firewall to access general-office but rather to lease-line router instead.  what is the gateway address on this host: 192.168.2.8 ?

Do  you have default-route on the lease-line router pointing to 192.168.2.2 (i.e. firewall inside address)?

0 Helpful
Customers Also Viewed These Support Documents