Not receiving big e-mail messages - Deny TCP (No Connection)

Firewalls, PIX, ASA, VPN, Access Control List, User Authentication, Data Encryption and Best Practices.
Guest

Not receiving big e-mail messages - Deny TCP (No Connection)

Post by Guest » Mon May 17, 2010 5:03 pm

Hey guys! Need your help on a issue Im having problems in receive e-mail bigger than 15 Mb , attached on the message. i get the following Logs on ASA: 7|Feb 28 2011|15:21:26|609002|209.85.214.50||||Teardown local-host externa_CC:209.X.X.X duration 0:00:006|Feb 28 2011|15:21:26|106015|209.85.214.50|51069|187.32.96.162|25|Deny TCP no connection from 209.x.x.x/51069 to 187.x.x.x/25 flags ACK  on interface externa_CTBC7|Feb 28 2011|15:21:26|609001|209.85.214.50||||Built local-host externa_CTBC:209.85.214.507|Feb 28 2011|15:21:26|609002|209.85.214.50||||Teardown local-host externa_CTBC:209.85.214.50 duration 0:00:006|Feb 28 2011|15:21:26|106015|209.85.214.50|51069|187.32.96.162|25|Deny TCP (no connection) from 209.85.214.50/51069 to 187.32.96.162/25 flags ACK  on interface externa_CTBC7|Feb 28 2011|15:21:26|609002|209.85.214.50||||Teardown local-host externa_CTBC:209.85.214.50 duration 0:10:006|Feb 28 2011|15:21:26|302014|209.85.214.50|51069|172.20.1.13|25|Teardown TCP connection 387976374 for externa_CTBC:209.85.214.50/51069 to dmz:172.20.1.13/25 duration 0:10:00 bytes 12998556 TCP Reset-I  Does anyone had this kind of problem? What could i do to solve this issue?

Guest

Re:Not receiving big e-mail messages - Deny TCP (No Connection)

Post by Guest » Mon May 17, 2010 6:33 pm

The following line: 6|Feb 28 2011|15:21:26|302014|209.85.214.50|51069|172.20.1.13|25|Teardown TCP connection 387976374 for externa_CTBC:209.85.214.50/51069 to dmz:172.20.1.13/25 duration 0:10:00 bytes 12998556 TCP Reset-I It shows a Reset-I, that means the internal device send a reset.  The best thing you could do is set captures so that you can view the communcation between the two devices. Apply the capture on the two interfaces involved.

Post Reply