Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Mike Lewis on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Performance Problems through PIX

Status
Not open for further replies.
North323

North323

Technical User
Jan 13, 2009
966
0
0
US
i am trying to download a 112mb file through a pix v6.2 and takes about 3 minutes using ftp port 2021. when i do this same test on the network, takes about 20 seconds. in my packet capture i have a ton of these:
incorrect, should be 0x7742 (maybe caused by "TCP checksum offload"?)

could this be the cause of my 'slowness'?
 
Sort by date Sort by votes
Are you FTPing over the internet versus your own LAN?

Burt
 
Upvote 0 Downvote
this does happen over the internet so im trying to rule out my network. the file that i am ftp'ing is on the perimeter device
 
Upvote 0 Downvote
I HIGHLY doubt you have 100MBps speed over the internet...

There is going to be a HUGE difference between the internet and your LAN---what is the confusion? I'm sure I am still not understanding...what are you comparing LAN speed for FTP to???

Burt
 
Upvote 0 Downvote
you are right, i do not have a 100MBps speed over the internet.... here is what i am testing.

ftp download the same 113mb file from different locations within my own network

workstation - 2960 switch dmz 20 second download
workstation - pix firewall - 2960 edge switch 3 minutes 30 seconds

so i am not yet testing over the internet. i am still on my own equipment
 
Upvote 0 Downvote
Still a little confused on your testing scenario nomenclature.

Please restate your testing scenario specifying what PIX model, the level of security that port is set to (LAN, DMZ, WAN), the workstation's job (whether it's the one copying to or being copied from). Also, where is your FTP server at? (public Internet or your DMZ)

Also, have you looked at your speed/duplex settings on the ports involved?
 
Upvote 0 Downvote
workstation - 4500 switch - Pix - Edge Switch I put a ftp server on the Edge switch. trying to ftp from workstation to server(ftp) on the edge and getting horrible download speeds. going through the 'inside' 100 sec to 'outside' 0 PIX version 6.2. Everything is hard coded for 100/full
 
Upvote 0 Downvote
So what happens in that scenario when you remove the PIX altogether since your just testing? Also, you never stated what model of PIX.
 
Upvote 0 Downvote
when i remove the pix from the equation it takes like 20 seconds to ftp down when the pix is in the equation about 3 minutes pix 515 ver 6.2
 
Upvote 0 Downvote
Post a sh run from the PIX. You may want to also post this in the PIX forum...

/
 
Upvote 0 Downvote
found the solution. switch port was set to auto/auto and was negotiating at 10/full
 
Upvote 0 Downvote
Speed/duplex settings are a major culprit a lot of times.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

DWheater
  • Locked
  • Question
FTP through Back to Back Firewalls
Replies
0
Views
37
DWheater
DWheater
Pushpat
  • Locked
  • Question
send trap to ipnetwork through snmptrap command
Replies
0
Views
43
Pushpat
Pushpat
Pushpat
  • Locked
  • Question
send trap to ipnetwork through snmptrap command
Replies
0
Views
38
Pushpat
Pushpat
jonmyk
  • Locked
  • Question
Problems connecting Media Converter to a 3COM switch
Replies
4
Views
54
VinceWhirlwind
VinceWhirlwind
peaceatwork
  • Locked
  • Question
Newbie question - means to send messages to stations through tcp/ip
Replies
6
Views
41
peaceatwork
peaceatwork

Part and Inventory Search

Sponsor

Back
Top