[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
?
Solved

VPN traffic & application drops

Posted on 2012-08-21
5
Medium Priority
?
763 Views
Last Modified: 2012-09-11
We have a site to site internet VPN between a Cisco ASA 4510 (ASDM 8.5) at our main site (40 M fiber), and a Cisco 2951 (10 M ethernet) at our satellite site.  The two other VPNs don't have a problem...

We have two applications that drop periodically starting a week ago: Outlook and  ASA/400.

What we done:
- hard coded the WAN interface of 4510 interface to the ISP modem interface at 100/full
- increased the TTL on VPN
- lowered WAN server replication bandwidth between sites

We noticed improvements.  However, today we got our first complaint of the ASA/400 software resetting and Outlook hanging.

Attached is a visual of traffic between the sites that spiked just before the user complained.  This happened twice today.

What can be done for our VPN stability to handle this traffic?  And why is this happening?
Also, is one dropped packet from time to time generally a problem?
-------------------------------------

So this appeared to happen again.  A huge connection to Exchange from remote site.  Caused 11 packets lost it appears.
Or (I forgot to mention) the site is configured to failover the VPN to secondary line when loose contact w/ main vpn connection.  

Maybe it is trying to failover and then failback when loosing connection?
traffic.png
0
Comment
Question by:unTech
  • 4
5 Comments
 
LVL 35

Expert Comment

by:Ernie Beek
ID: 38320276
You might want to monitor the logging on the ASA and/or the 2951 to see if somethings shows up there.
0
 

Author Comment

by:unTech
ID: 38373500
I've requested that this question be deleted for the following reason:

no one answered
0
 

Author Comment

by:unTech
ID: 38370041
Configuration on one of the routers were changed (SLA monitor).
0
 

Accepted Solution

by:
unTech earned 0 total points
ID: 38373501
Configuration on one of the routers were changed (SLA monitor) to ping IP gateway instead of 4.2.2.2
0
 

Author Closing Comment

by:unTech
ID: 38386044
yes
0

Featured Post

 The Evil-ution of Network Security Threats

What are the hacks that forever changed the security industry? To answer that question, we created an exciting new eBook that takes you on a trip through hacking history. It explores the top hacks from the 80s to 2010s, why they mattered, and how the security industry responded.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you’re involved with your company’s wide area network (WAN), you’ve probably heard about SD-WANs. They’re the “boy wonder” of networking, ostensibly allowing companies to replace expensive MPLS lines with low-cost Internet access. But, are they …
Will you be ready when the clock on GDPR compliance runs out? Is GDPR even something you need to worry about? Find out more about the upcoming regulation changes and download our comprehensive GDPR checklist today !
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

873 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question