Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I am observing ARP input Queue full and dropping packets.At the same time Observing CPU high due to PID 9 which belongs to ARP Input. Kindly suggest solution, customer is dropping connections to their servers.007152: Mar 15 12:03:32.816: %SYS-1-CPURI...
A site to site VPN on ASA is getting stuck. I have to reset ikev1 phase all the time to get it back.The S2S is VPN is between ASA and checkpoint. The source is 192.168.11.x/24 and destination are different server IP's on ASA.
NMS sits in Subnet 192.1...
Hii
My company recently bought a USM which has been flooding my firewall with syn packets.
Now as a solution i've applied tcp intercept but it is not getting applied globally.
Temporarily i've applied it on inside interface which is pretty much hel...
It is Virtual Route forwarding, we use when we need a different routing table on the same device.With this you can use same bunch of IP address and routing that you are using on default vrf, to segregate the customers using same IP. There are many us...
No it was working fine for like 6 months after i've applied NAT.Though the instability started 20 days ago and i'm resetting the ikev1 session in every 18 hours to start it again.
Yes, The checkpoint administrator has been informed about the same.I have told him to confirm phase 2 lifetime though, will try making them same on both end.
Hi Maurius,I have tried debugging the peer but nothing significant has been observed.Though i have seen one common pattern everytime this happens. ASA shows Tx increasing but the Rx remains same, that refers i'm not receiving traffic from my peer. Al...
