Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

According to Cisco F5 does not close connections to the Cisco FirePower Firewall..

Gabriel_Basson
Nimbostratus
Nimbostratus

‎10-Mar-2020 06:02

Good day F5 Experts

 

According to Cisco F5 does not close connections to the Cisco FirePower Firewall.

They say that the BigIP does not always send RST packets to close the connection, thus the firewall sits with 60000 connections and the BigIP with 20000, so there are 40000 stale connections on the firewall.

The F5 BigIP is sanwidged between the External Zone and Internal Zone of the Cisco FirePower.

 

The BigIP is running on 13.1.1.4 Build 0.116.4.

 

Did you ever experience something like this and is there a solution for it?

 

Kind Regards

Gabriel

Labels:
0 Kudos
1 REPLY 1

Simon_Blakely
F5 Employee
F5 Employee

‎16-Mar-2020 21:28

What sort of connections?

 

What is the BigIP doing to terminate the connection?

A reset isn't a normal way to close a valid connection

 

We need some more information ...

0 Kudos
Copyright © 2022 Khoros, LLC