Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
5059
Views
0
Helpful
1
Replies

tcp normalization

dvanzee
Level 2
Level 2

‎08-01-2011 06:09 PM - edited ‎03-07-2019 01:30 AM

Can someone tell me what tcp normalization is? And how I can tell if it is happening within a data flow? I assume you can see it in a sniffer capture.

Thank you

Labels:
0 Helpful
1 Reply 1

Jon Marshall
Hall of Fame
Hall of Fame

‎08-01-2011 06:25 PM

TCP normalization is a feature used on ASA firewalls to drop TCP packets that do not appear to be normal. Yes if you captured packets with a sniffer you should be able to see the TCP settings but then again you would need to know what you were looking at and what was "normal".

What you are doing with TCP normalisation is looking at certain options etc. within the TCP packet and deciding whether these are acceptable or not.

See this link for more details of what you can do with TCP normalisation on the ASA and also what options etc. you would be looking at -

http://www.ccie1.com/?p=21

Jon

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card