Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
509
Views
0
Helpful
2
Replies

S2S VPN drops traffic from specific application

kostasthedelegate
Level 4
Level 4

‎06-03-2021 05:05 AM

Hello, 

 

I have two ASA(5510 and 5505) that are connected with S2S VPN.

The branch sends all the traffic to the VPN. 

They have recently changed internet provider.

The thing is that the traffic passes through VPN. 

There is a server application in the main site that takes backup a server in the branch side. The backup operation does not succeed, but if they put a route to the backup VPN it passes fine to the backup VPN 

 

In the firewall I take a capture and I see the flows, but I get some resets from the branch site. Also I see timeouts in the logs. 

 

From the application side they do not see anything, just communication issues. 

From the provider they have checked the line and it is ok. 

 

I change also the tcpmss to a smaller value, but I did not any change. 

 

Any thoughts?

 

Thanks and regards, 

Konstantinos

Labels:
0 Helpful
2 Replies 2

balaji.bandi
Hall of Fame
Hall of Fame

‎06-03-2021 02:53 PM

Are there any IP changes? check any IP address listed in the Server-side to access any rules ?

 

can you post the example flows to understand the issue, is the server able to see the request? is this Wireshark captured on server see what is happening, since you mentioned 2 points here - ISP changed, and passing VPN side.

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

kostasthedelegate
Level 4
Level 4

‎06-09-2021 10:18 PM

After a reload of the ASA it worked as it should..

0 Helpful
Customers Also Viewed These Support Documents