Hi,
See CSCsl15229 bug and then upgrade your ASA to 8.0(4) or later
HTH,
--
Piotr Matusiak
CCIE #19860 (R&S, Security)
Technical Instructor
website: www.MicronicsTraining.com
blog: www.ccie1.com
�If you can't explain it simply, you don't understand it well enough� -
Albert Einstein
2010/8/28 Kawaii Mak <kawaii00mak_at_gmail.com>
> Dear Expert,
>
> I have a question about a Cisco FW (ASA5510+ with v8.0(3)) setup for client
> inside FW to access internet public streaming server. Inspection was
> configured
> to inspect rtsp traffic, but some of the internet radio site connection was
> teardown with following message(reassembly limit of 8192 bytes exceeded).
> Is
> there any method to overcome the problem instead of not using the
> inspection.
> P'se help!!! Thank.
>
> firewall log
> ===================
> Aug 26 2010 17:38:48: %ASA-6-302013: Built outbound TCP connection 4940901
> for
> outside:117.18.100.225/554 (117.18.100.225/554) to inside:
> 10.193.227.147/52174
> (219.76.98.211/1026)
> Aug 26 2010 17:38:48: %ASA-4-507001: Terminating TCP-Proxy connection from
> inside:10.193.227.147/52174 to outside:117.18.100.225/554 - reassembly
> limit of
> 8192 bytes exceeded
> Aug 26 2010 17:38:48: %ASA-6-302014: Teardown TCP connection 4940901 for
> outside:117.18.100.225/554 to inside:10.193.227.147/52174 duration 0:00:00
> bytes 437 Flow closed by inspection
>
> Regards,
> Kawaii
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
Blogs and organic groups at http://www.ccie.net
Received on Sat Aug 28 2010 - 12:55:07 ART