PIX 501 to ASA 5505 - telnet dropping out

PIX 501 to ASA 5505 - telnet dropping out
Secure Home | Search | About
Login Password
Register Now! Lost Password?
 Networking Firewalls    Post an article   get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content add this group's latest topics to your Google content
Subject Author Date
PIX 501 to ASA 5505 - telnet dropping out seancharlesdesign 08-02-2007
Posted by on August 2, 2007, 11:40 am
If you were  Registered and logged in, you could reply and use other advanced thread options
Hi All,

I have pix vpn'ed to asa over broadband connection using DES. Telnet
sessions running over the vpn are, in a pretty random fashion, being
dropped at the user side (behind the pix) while appearing to the
server (behind the asa) to still be active and keeping the sessions
open.

I don't have configs to post, so can anyone spot any "red flags" or
recommend obvious things to try for fixes?

Sorry for the lack of info. Appreciate all help in advance.

Regards,

Sean


Posted by CK on August 2, 2007, 2:28 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
Is you VPN tunnel up ?
You can check the access-list is it getting any hit counters or is it
allowed for Telnet traffic?


Posted by on August 2, 2007, 4:07 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
> Is you VPN tunnel up ?
> You can check the access-list is it getting any hit counters or is it
> allowed for Telnet traffic?

Thanks for the reply, CK.

The tunnel is up and telnet is good for 75% of the working day. Are
there logs I can look at somewhere that might help me isolate the
other 25%?


Posted by CK on August 3, 2007, 10:52 am
If you were  Registered and logged in, you could reply and use other advanced thread options
On Aug 3, 1:07 am, seancharlesdes...@gmail.com wrote:
>
> > Is you VPN tunnel up ?
> > You can check the access-list is it getting any hit counters or is it
> > allowed for Telnet traffic?
>
> Thanks for the reply, CK.
>
> The tunnel is up and telnet is good for 75% of the working day. Are
> there logs I can look at somewhere that might help me isolate the
> other 25%?


Do you have any syslog setup for logs may be rom logs youcan get from
which side connection is discarded .
source or destination as you mentioned earlier

>being dropped at the user side (behind the pix) while appearing to the
>server (behind the asa) to still be active and keeping the sessions
>open.

I hope you will find some logs in log server



Similar ThreadsPosted
Cisco ASA 5505 VPN Help December 7, 2007, 8:09 am
ASA 5505 Security Plus and ADSL August 6, 2007, 7:21 am
Is there any RFC for telnet proxy? September 5, 2005, 12:12 am
Help with Cisco ASA 5505 config for BellSouth DSL April 16, 2007, 2:28 pm
Help with Cisco ASA 5505 config for BellSouth DSL August 8, 2007, 5:08 pm
Cisco asa 5505 Clientless SSL VPN (WebVPN) November 5, 2007, 12:45 pm
Re: ASA 5505 incoming traffic issue June 20, 2008, 5:30 pm
VPN connection allows telnet/ssh but sftp/ftp fails June 13, 2005, 7:07 am
anyone knows how to disable telnet on a tasman router October 18, 2005, 3:14 pm
A question about Checkpoint firewall and Telnet over VPN November 5, 2006, 4:43 pm

The site map in XML format XML site map

Contact Us | Privacy Policy