Converting from PPTP to IPsec on PIX to PIX causes timeouts and slow repsonse
Posted on 2005-04-28
Ever since we converted to IPsec for our remote sites from PPTP, we experience timeouts where the user needs to relaunch application and sign back in. Where would I check to see the cause of these timeouts? Also, remote users are complaining about very slow responses at times from one remote site, yet the T1 looks good and only at 50% utilzed.. This slowness started after converting to IPsec from PPTP. The slowness is while they are telnet to an application at the main site. Is there a way to check the TCP window size, if that might help isolate the problem? or what else should I look at for this 1 remote site
The devices are PIX 501 and 506 (main site). The health / capacity of the PIX 506 is in question, what should I look for there that may indicate its reaching capacity, dropping packets, overworked ??