So, i have just installed a new Pix 535 into our core network. Two Gig Cards in it as i have plugged it into the Gig Backbone to segment the network (chose the 535 as it can handle the 1.7 Gig throughput).
Anyhow, everything seemed to be going well apart from the one slight snag. I have noticed that Internet Traffic has slowed right down. The Traffic goes throught he core firewall and then through a ISA 2004 Firewall (and then a Pix 525 on the edge). The 535 is only doing routing as its only there to segment our internal network segments.
So, it only appeared to be isolated to the one segment where the Internet traffic was just so slow you couldn't use it. I put this down to other issues on that WAN. Anyhow, today we have been upgrading websense on a segment that seemed fine and the database download keeps failing. Argh....stupid thing, lol.
I have done a packet capture and noticed that there are a load of TCP Retransmissions and also in the syslog i am getting "Deny TCP (no connection) from x.x.x.x/1286 to x.x.x.x/80 flags PSH ACK on interface Blah.
Anyone get on suggestions on this one before i do pull my hair out