[c-nsp] FWSM problems with one website only
John Kougoulos
koug at intracom.gr
Fri Apr 8 10:18:59 EDT 2011
On Fri, 8 Apr 2011, Arne Larsen / Region Nordjylland wrote:
> When I did the tracing on the FWSM I could se that it was sending
> traffic in both direction on the connection and on the wireshark I could
> se that both ends ended up asking for each other, and after a while
> retransmitting the website sends a reset.
> Another odd thing that occurs is, when a vpn ipsec user that has
> accessed our network, is calling the website it normally works fine, not
> always though.
>
long shot, but, just in case... The FWSM has limited capabilities of
handling fragmented packets.
When you connect through vpn ipsec, the vpn client application sets the
mtu to 1300 so the problem may disappear.
Hope this gives you a hint.
John
More information about the cisco-nsp
mailing list