I'm trying to setup Remote Access VPN on Cisco FTD 6.2.2. Client (192.168.55.202) can ping IP address on FTD (gig 0/1.509 - 192.168.59.3) but cannot reach the HTTPS web page while using https://192.168.59.3 address on its browser.
I captured traffic coming into g0/1.509 on FTD and saw "ACK" packets sent by FTD to the clients had TCP windows of "0" and "RST" flag. This is sample of the capture. the rest is the same:
1: 802.1Q vlan#509 P0 192.168.55.202.49222 > 192.168.59.3.443: SWE 3183334073:3183334073(0) win 8192 <mss 1460,nop,wscale 8,nop,nop,sackOK>
2: 802.1Q vlan#509 P0 192.168.59.3.443 > 192.168.55.202.49222: R 1075841815:1075841815(0) ack 3183334074 win 0
Why does FTD send packets with Window Size of "0" and reset flag?
No comments:
Post a Comment