Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


View this topic in a long page with up to 500 replies per page Create new topic
1 | 2 


BDFL - Memuneh
58086 posts

Uber Geek
+1 received by user: 9630

Administrator
Trusted
Geekzone
Subscriber

  Reply # 771661 28-Feb-2013 12:50
Send private message

Sure, but how come this only happens on a TelstraClear connection?




29 posts

Geek


  Reply # 771686 28-Feb-2013 13:21
Send private message

If there are missing packets, it could be a routing or firewall issue. If the packets have been altered during transit, it could be due to misconfiguration in Telstra Clear's infamous 'transparent' proxy.

 
 
 
 


803 posts

Ultimate Geek
+1 received by user: 229


  Reply # 771693 28-Feb-2013 13:38
Send private message

Rubicon: If there are missing packets, it could be a routing or firewall issue. If the packets have been altered during transit, it could be due to misconfiguration in Telstra Clear's infamous 'transparent' proxy.


TCL's proxy should only affect port 80 (not SSTP on 443) and only international traffic.

Is the SSTP server on an unmanaged dedicated server, or something Datacom is resposible?  If the latter, get them to look at it.



BDFL - Memuneh
58086 posts

Uber Geek
+1 received by user: 9630

Administrator
Trusted
Geekzone
Subscriber

  Reply # 771703 28-Feb-2013 13:53
Send private message

It is one of my own servers. I am not too sure we should get Datacom involved at the moment as everything points out to something on TelstraClear perimeter causing this. As I said it works just fine when I connect from other networks.




803 posts

Ultimate Geek
+1 received by user: 229


  Reply # 771734 28-Feb-2013 14:32
Send private message

freitasm: It is one of my own servers. I am not too sure we should get Datacom involved at the moment as everything points out to something on TelstraClear perimeter causing this. As I said it works just fine when I connect from other networks.


You'll have more luck with Datacom talking to their upstream talking to TCL, then you talking to TCL customer care.  You're paying for a business-grade service at the Datacom end; use it.

1805 posts

Uber Geek
+1 received by user: 560

Trusted

  Reply # 771744 28-Feb-2013 14:47
Send private message

freitasm: Sure, but how come this only happens on a TelstraClear connection?


Don't forget that the other end (your hosted server at datacom) might have a very different path travelling over different links on the return to your TCL connection.  There might be a box along the way with a misconfigured MTU, or something that's trying to be "clever" and have some sort of SSL manipulation going on.

Certainly think this is worthy of logging a fault with TCL at first, then also getting Datacom involved to check the return path towards you.

All those TCP re-transmits - make sure there's not an MTU issue somewhere.

1375 posts

Uber Geek
+1 received by user: 131


  Reply # 771746 28-Feb-2013 14:49
Send private message

have you tried bypassing your router?

803 posts

Ultimate Geek
+1 received by user: 229


  Reply # 771755 28-Feb-2013 14:56
Send private message

muppet:
freitasm: Sure, but how come this only happens on a TelstraClear connection?


Don't forget that the other end (your hosted server at datacom) might have a very different path travelling over different links on the return to your TCL connection.  There might be a box along the way with a misconfigured MTU, or something that's trying to be "clever" and have some sort of SSL manipulation going on.

Certainly think this is worthy of logging a fault with TCL at first, then also getting Datacom involved to check the return path towards you.

All those TCP re-transmits - make sure there's not an MTU issue somewhere.


The "pings work, bring up something big and it fails" sounds like an MTU issue, but it'd be wierd if the packets from your hosted box to your home TCL cable connection went through any MTU<1500 links.



BDFL - Memuneh
58086 posts

Uber Geek
+1 received by user: 9630

Administrator
Trusted
Geekzone
Subscriber

  Reply # 771757 28-Feb-2013 14:56
Send private message

mercutio: have you tried bypassing your router?


Already said yes, twice in this thread.







BDFL - Memuneh
58086 posts

Uber Geek
+1 received by user: 9630

Administrator
Trusted
Geekzone
Subscriber

  Reply # 771759 28-Feb-2013 14:57
Send private message
460 posts

Ultimate Geek
+1 received by user: 70


  Reply # 771801 28-Feb-2013 16:24
Send private message

If I have learnt anything from Geekzone its that a Master Filter will fix this problem

1375 posts

Uber Geek
+1 received by user: 131


  Reply # 771803 28-Feb-2013 16:27
Send private message

skewt: If I have learnt anything from Geekzone its that a Master Filter will fix this problem


splitter, not filter.




BDFL - Memuneh
58086 posts

Uber Geek
+1 received by user: 9630

Administrator
Trusted
Geekzone
Subscriber

  Reply # 777612 10-Mar-2013 12:51
Send private message

I think this is now solved. Two firewalls blocking stuff they shouldn't, on my side. Disabled one of them and things seem to work fine now.

Obviously shouldn't have both firewalls active, and I have no idea why it was configured like that but it seems all is working fine (at least for the last couple of days).






BDFL - Memuneh
58086 posts

Uber Geek
+1 received by user: 9630

Administrator
Trusted
Geekzone
Subscriber

  Reply # 777925 11-Mar-2013 12:33
Send private message

Hmm. Not so sure now. After a couple of days with no problems I had around five VPN disconnects this morning.




1 | 2 
View this topic in a long page with up to 500 replies per page Create new topic



Twitter »

Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

Red Hat unveils production-ready open source hyperconverged infrastructure
Posted 23-Jun-2017 22:10


Whatever ailed Vodafone broadband … seems to be fixed
Posted 23-Jun-2017 14:10


VMware NSX Meets Stringent Government Security Standards with Common Criteria Certification
Posted 22-Jun-2017 19:05


Brother launches next-generation colour laser printers and all-in- ones for business
Posted 22-Jun-2017 18:56


Intel and IOC announce partnership
Posted 22-Jun-2017 18:50


Samsung Galaxy Tab S3: Best Android tablet
Posted 21-Jun-2017 12:05


Wellington-based company helping secure Microsoft browsers
Posted 20-Jun-2017 20:51


Endace delivers high performance with new 1/10/40 Gbps packet capture card
Posted 20-Jun-2017 20:50


You can now integrate SMX security into Microsoft Office 365, Google and other cloud email platforms
Posted 20-Jun-2017 20:47


Ravensdown launches new decision-making tool HawkEye
Posted 19-Jun-2017 15:38


Spark planning to take on direct management of all consumer stores
Posted 19-Jun-2017 10:03


Qrious acquires Ubiquity
Posted 14-Jun-2017 12:21


Spark New Zealand prepares for 5G with Nokia
Posted 14-Jun-2017 12:16


The future-proof 10.5-inch iPad Pro
Posted 13-Jun-2017 18:16


Mandatory data breach reporting in Australia
Posted 13-Jun-2017 11:30



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.