• Advertisement

Not receiving big e-mail messages - Deny TCP (No Connection)

Firewalls, PIX, ASA, VPN, Access Control List, User Authentication, Data Encryption and Best Practices.

Not receiving big e-mail messages - Deny TCP (No Connection)

Postby Guest » Mon May 17, 2010 4:03 pm

Hey guys!

 

Need your help on a issue

 

Im having problems in receive e-mail bigger than 15 Mb , attached on the message. i get the following Logs on ASA:

 


7|Feb 28 2011|15:21:26|609002|209.85.214.50||||Teardown local-host externa_CC:209.X.X.X duration 0:00:00
6|Feb 28 2011|15:21:26|106015|209.85.214.50|51069|187.32.96.162|25|Deny TCP no connection from 209.x.x.x/51069 to 187.x.x.x/25 flags ACK  on interface externa_CTBC
7|Feb 28 2011|15:21:26|609001|209.85.214.50||||Built local-host externa_CTBC:209.85.214.50
7|Feb 28 2011|15:21:26|609002|209.85.214.50||||Teardown local-host externa_CTBC:209.85.214.50 duration 0:00:00
6|Feb 28 2011|15:21:26|106015|209.85.214.50|51069|187.32.96.162|25|Deny TCP (no connection) from 209.85.214.50/51069 to 187.32.96.162/25 flags ACK  on interface externa_CTBC
7|Feb 28 2011|15:21:26|609002|209.85.214.50||||Teardown local-host externa_CTBC:209.85.214.50 duration 0:10:00
6|Feb 28 2011|15:21:26|302014|209.85.214.50|51069|172.20.1.13|25|Teardown TCP connection 387976374 for externa_CTBC:209.85.214.50/51069 to dmz:172.20.1.13/25 duration 0:10:00 bytes 12998556 TCP Reset-I

 

 

Does anyone had this kind of problem? What could i do to solve this issue?

Guest
 

Advertisement

Re:Not receiving big e-mail messages - Deny TCP (No Connection)

Postby Guest » Mon May 17, 2010 5:33 pm

The following line:

 

6|Feb 28 2011|15:21:26|302014|209.85.214.50|51069|172.20.1.13|25|Teardown TCP connection 387976374 for externa_CTBC:209.85.214.50/51069 to dmz:172.20.1.13/25 duration 0:10:00 bytes 12998556 TCP Reset-I

 

It shows a Reset-I, that means the internal device send a reset.

 

The best thing you could do is set captures so that you can view the communcation between the two devices. Apply the capture on the two interfaces involved.

Guest
 



  • Advertisement


Similar topics


Return to Cisco Security

Who is online

Users browsing this forum: No registered users and 2 guests