Omega Owners Forum
Chat Area => General Discussion Area => Topic started by: JamesV6CDX on 12 October 2007, 16:54:07
-
Customer has a 4mb leased line (2x 2mb Bonded)
Helpdesk escalate a call to me after doing the usual reboots and rubbish , customer has some web browsing problems.
Customer can get to some websites fine, but cannot reach others. I Get a list off the customer of what he can access and what he can't.
I telnet to his router, (cisco 2600), I can ping out to the websites he says he can access, but I can't ping to the ones he is unable to browse to. And they ARE configured to respond to ICMP.
No proxy or ISA servers etc involved.
Telnet to A end core router the line is provided from, can resolve and ping those sites without a problem.
-
sorry,
once again...
-
ping does not use ICMP ? .. :-?
I'm confused..
-
ping does not use ICMP .. :-?
I'm confused..
Ping is a computer network tool used to test whether a particular host is reachable across an IP network. It works by sending ICMP “echo request” packets to the target host and listening for ICMP “echo response” replies.
-
ping does not use ICMP .. :-?
I'm confused..
Ping is a computer network tool used to test whether a particular host is reachable across an IP network. It works by sending ICMP “echo request” packets to the target host and listening for ICMP “echo response” replies.
I know ping works with ICMP but how for the second dont work ?
ps: network protocols are not my subject but its opposite what I know so far
-
Tried a traceroute to see where the packets are dropping? Of course this uses ICMP too so suffers the same potential problems with firewalls dropping them but if you can ping the sites from elsewhere it should be useful. BTW I'd be a little concerned that he has telnet enabled on his router... SSH maybe but telnet :o
-
I think the problem lies with the jiggle pin, its not in sync with the jam centre and thus creating a log jam in the never ending circle of life. Hope this helps. :y ;D ;D ;D
-
Post up if you fix it James.....otherwise i'll ask my neighbour in the morning......he's one of those cisco buffs.....thats earns a fortune....if he thinks its a router problem :y No good phoning him now....its Fri night and he'll been in the pub for about 3 hours by now ;D
-
I,ll get me coat! mrs ffcgary1 says= she knows the basics,are there any sites blocked,and have you run all the normal spyware progs. ;D
-
Perhaps the remote site has blacklisted traffic from your customers domain (rDNS lookup to ascertain).
Can your customer send emails to them?
-
Cheers, guys, however above suggestions all tried :)
I have my suspicions what is causing the prob, I will know for sure tomorrow when I can actually be arsed to look into it ;D
-
Depends how the bonding is done - is traffic over 1 line ok, but over the other one not working? If its bonded by 'load balanacing' by destination IP (eg odd/even last octet), some hosts reachable, some not?
Or a config error on the bonding which means replys coming down wrong half of it?
Need to know more about the bonding...
-
same for my job. I can reach my job website, but cant ping.. > Firewall
-
Depends how the bonding is done - is traffic over 1 line ok, but over the other one not working? If its bonded by 'load balanacing' by destination IP (eg odd/even last octet), some hosts reachable, some not?
Or a config error on the bonding which means replys coming down wrong half of it?
Need to know more about the bonding...
By very far the closest answer so far ;)
I am very close to fixing this one... and tomorrow, once I have done a couple more tests, I will know for sure.
Obviously I will post up the results.
This year has been a BIG Cisco learning curve for me!
-
BTW I'd be a little concerned that he has telnet enabled on his router... SSH maybe but telnet :o
All our customers have telnet enabled by default on their CPE - standard Cisco kit.
Authentication is wilth Terminal Access Controller Access-Control System (TACACS), so a little more secure..
-
First thing springs to mind is Firewall!
Secondly, could one of the lines have db noise on it, it may get worse with the data transfer.. Had this a wee while ago with a customer... changed his pairs back to the exchange.. sorted MOST probs... ask phone company for a PTO... (Precission Testing Officer) to evaluate the db loss on the lines !!! ;)
-
NLB configurations I think are a bit sensitive..
Although not related, once we had a bad experience..We do network balancing on the servers not the routers...And become a nightmare for Activex controls..When you try to install the activex from the client dont work.But from a normal IIS server was OK..
-
I can't believe no one has suggested this already, but have you tried turning it off and on again?
;)
-
I can't believe no one has suggested this already, but have you tried turning it off and on again?
;)
SSSSHH!
"Maintenance industry top secret proceedure"
;D
-
I cannot log to the Telco, until I've proven a few more things,
It will go from Frontline Monkey, to DTO, then PTO
-
First thing springs to mind is Firewall!
Secondly, could one of the lines have db noise on it, it may get worse with the data transfer.. Had this a wee while ago with a customer... changed his pairs back to the exchange.. sorted MOST probs... ask phone company for a PTO... (Precission Testing Officer) to evaluate the db loss on the lines !!! ;)
How can the firewall be related, if I'm testing directly from the router out to the Internet? The Firewall is behind the router, just in front of the LAN..
-
First thing springs to mind is Firewall!
Secondly, could one of the lines have db noise on it, it may get worse with the data transfer.. Had this a wee while ago with a customer... changed his pairs back to the exchange.. sorted MOST probs... ask phone company for a PTO... (Precission Testing Officer) to evaluate the db loss on the lines !!! ;)
How can the firewall be related, if I'm testing directly from the router out to the Internet? The Firewall is behind the router, just in front of the LAN..
May be they use hardware style firewall (ie not on a server) .They are located before everything else
-
First thing springs to mind is Firewall!
Secondly, could one of the lines have db noise on it, it may get worse with the data transfer.. Had this a wee while ago with a customer... changed his pairs back to the exchange.. sorted MOST probs... ask phone company for a PTO... (Precission Testing Officer) to evaluate the db loss on the lines !!! ;)
How can the firewall be related, if I'm testing directly from the router out to the Internet? The Firewall is behind the router, just in front of the LAN..
May be they use hardware style firewall (ie not on a server) .They are located before everything else
It would go
Internet > BT Network Termination Equipment (NTE) > TC703 > Cisco Router > Hardware Firewall (juniper).
So as you can see, my tests from the router, go directly out to the internet, the Hardware firewall has no involvement or control in that.
I was looking forward to proving this issue today, but had to take an emergency day off work when Maria fell ill :(
-
First thing springs to mind is Firewall!
Secondly, could one of the lines have db noise on it, it may get worse with the data transfer.. Had this a wee while ago with a customer... changed his pairs back to the exchange.. sorted MOST probs... ask phone company for a PTO... (Precission Testing Officer) to evaluate the db loss on the lines !!! ;)
How can the firewall be related, if I'm testing directly from the router out to the Internet? The Firewall is behind the router, just in front of the LAN..
May be they use hardware style firewall (ie not on a server) .They are located before everything else
It would go
Internet > BT Network Termination Equipment (NTE) > TC703 > Cisco Router > Hardware Firewall (juniper).
So as you can see, my tests from the router, go directly out to the internet, the Hardware firewall has no involvement or control in that.
I was looking forward to proving this issue today, but had to take an emergency day off work when Maria fell ill :(
Bloody women >:(....you carnt rely on them ;D
Only joking m8......hope Maria gets better soon :y
-
First thing springs to mind is Firewall!
Secondly, could one of the lines have db noise on it, it may get worse with the data transfer.. Had this a wee while ago with a customer... changed his pairs back to the exchange.. sorted MOST probs... ask phone company for a PTO... (Precission Testing Officer) to evaluate the db loss on the lines !!! ;)
How can the firewall be related, if I'm testing directly from the router out to the Internet? The Firewall is behind the router, just in front of the LAN..
I dunno! ::)
-
well I'd go with the suggestion of running a traceroute, it may be that the non-working sites don't have a route back to the source location ...