greenskwerl
asked on
Cisco Pix - dropping web connection
I setup a Cisco PIX 501 to pass web traffic to an internal machine. Standard access-list for www, ftp, and ftp-data.
I have about 12 websites that I have pointed to the public IP address. I loose my connection to that IP all the time through the web. It will drop for a minute and come back up for another couple minutes and then drop again.
What I have done thus far:
Ran a continuous ping against the firewall. No drops.
Tested the webserver internally any time I noticed an outage and it came up everytime.
I am lost on this one. Are there commands that I can run to test the PIX to see if it is dropping the connection? Could I be getting DOS'd?
Help.
I have about 12 websites that I have pointed to the public IP address. I loose my connection to that IP all the time through the web. It will drop for a minute and come back up for another couple minutes and then drop again.
What I have done thus far:
Ran a continuous ping against the firewall. No drops.
Tested the webserver internally any time I noticed an outage and it came up everytime.
I am lost on this one. Are there commands that I can run to test the PIX to see if it is dropping the connection? Could I be getting DOS'd?
Help.
>I have about 12 websites that I have pointed to the public IP address.
The 501 is simply not designed for this much traffic, especially if you are using only one public IP address for all 12 sites. How much traffic to these sites get?
The 501 is simply not designed for this much traffic, especially if you are using only one public IP address for all 12 sites. How much traffic to these sites get?
ASKER
it is minimal at this point. How can I check?
If you use the Web GUI, just monitor the number of inbound connections
Monitoring, Connection graphs, perfmon, connections perfmon, web perfmon, Graph it!
Monitoring, Connection graphs, perfmon, connections perfmon, web perfmon, Graph it!
ASKER
OK,
O monitored it for about 10 minutes. During this time, I lost connection twice. During the entire time, my peak bandwidth on the outside interface didnt go past 256KB. The CPU averaged 1% usage, and memory stayed at 11MB the entire time.
O monitored it for about 10 minutes. During this time, I lost connection twice. During the entire time, my peak bandwidth on the outside interface didnt go past 256KB. The CPU averaged 1% usage, and memory stayed at 11MB the entire time.
What's your status now? Any difference?
When you say that you lost connection, how are you capturing that? What kind of connection is it that you lose?
When you say that you lost connection, how are you capturing that? What kind of connection is it that you lose?
ASKER
Yes,
I narrowed it down to the webserver. It was working internally, but it was having issues serving stuff externally. Rebuilt it and it was fine.
I narrowed it down to the webserver. It was working internally, but it was having issues serving stuff externally. Rebuilt it and it was fine.
Glad you found the answer! Sorry I wasn't much help for you....
How's it going? Can you close this question?
https://www.experts-exchange.com/help.jsp#hs5
Thanks for attending to this long-forgotten question.
<-8}
https://www.experts-exchange.com/help.jsp#hs5
Thanks for attending to this long-forgotten question.
<-8}
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
i'm not sure I follow you on that. How do you lose connection? During a FTP session? During a WWW session?
Http is stateless once all the content downloads to your browser anway...
You can use the monitoring portion of the GUI to look at the IDS graphs (assuming you have it -IDS- enabled on the interface)