[92082] in North American Network Operators' Group
Re: Router / Protocol Problem
daemon@ATHENA.MIT.EDU (tony sarendal)
Wed Sep 6 09:33:32 2006
Date: Wed, 6 Sep 2006 14:32:24 +0100
From: "tony sarendal" <dualcyclone@gmail.com>
To: "Mike Walter" <mwalter@3z.net>
Cc: nanog@merit.edu
In-Reply-To: <BB4C6E31FB19824ABFE69BDAD0F4EB507372F3@zionexch01.ZION.local>
Errors-To: owner-nanog@merit.edu
------=_Part_226868_10636367.1157549544273
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
On 06/09/06, Mike Walter <mwalter@3z.net> wrote:
>
> I normally would not post to the group, but I am 100% stumped and have
> talked with peers with no luck.
>
> I have (2) Cisco 7204 Routers running BGP with 3 peers and HSRP. I am not
> doing anything special with BGP, pretty much a default config that has not
> changed in years.
>
> Recently with no changes to my network, I have been having problems
> connecting to certain websites and mail servers. I am always able to ping
> the sites and trace route without error. If I telnet to port 80 or port 25
> it does not connect. If I login to my router and telnet sourcing my each of
> Internet Providers ports, I am able to get to the sites. I have talked with
> all the providers and none can find a problem. If I shut down one specific
> peer, everything works fine. So I keep thinking it was that peers problem
> some how. I have tested with just that peer up and I still can not
> connect. However, when talking with that peer, they are able to telnet from
> their network to the sites I can not reach. I don't know what else to check
> besides shutting down that peer. Which since it is under a 3 year contract,
> not an option. That isn't the real solution anyhow.
>
> Can anyone shed some light on or off-list?
>
Give your peer a /32 to install on their access router, verify that return
path
is via them and have them do connectivity tests to your problem sites.
If that checks out you step by step through it. Ask to be moved to a
different
access router, next change your hardware.
/Tony
--
Tony Sarendal - tony@polarcap.org
IP/Unix
-= The scorpion replied,
"I couldn't help it, it's my nature" =-
------=_Part_226868_10636367.1157549544273
Content-Type: text/html; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
<br><br><div><span class="gmail_quote">On 06/09/06, <b class="gmail_sendername">Mike Walter</b> <<a href="mailto:mwalter@3z.net">mwalter@3z.net</a>> wrote:</span><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
<div>
<div>
<p><font face="Arial" size="2">I normally would not post to the group, but I am 100% stumped and have talked with peers with no luck. </font>
</p>
<p><font face="Arial" size="2">I have (2) Cisco 7204 Routers running
BGP with 3 peers and HSRP. I am not doing anything special with
BGP, pretty much a default config that has not changed in years. </font></p>
<p><font face="Arial" size="2">Recently with no changes to my network,
I have been having problems connecting to certain websites and mail
servers. I am always able to ping the sites and trace route
without error. If I telnet to port 80 or port 25 it does not
connect. If I login to my router and telnet sourcing my each of
Internet Providers ports, I am able to get to the sites. I have
talked with all the providers and none can find a problem. If I
shut down one specific peer, everything works fine. So I keep
thinking it was that peers problem some how. I have tested with
just that peer up and I still can not connect. However, when
talking with that peer, they are able to telnet from their network to
the sites I can not reach. I don't know what else to check
besides shutting down that peer. Which since it is under a 3 year
contract, not an option. That isn't the real solution
anyhow. </font></p>
<p><font face="Arial" size="2">Can anyone shed some light on or off-list?</font></p></div></div></blockquote><div><br>
Give your peer a /32 to install on their access router, verify that return path<br>
is via them and have them do connectivity tests to your problem sites.<br>
<br>
If that checks out you step by step through it. Ask to be moved to a different<br>
access router, next change your hardware.<br>
<br>
</div></div>/Tony<br>
<br>-- <br>Tony Sarendal - <a href="mailto:tony@polarcap.org">tony@polarcap.org</a><br>IP/Unix<br> -= The scorpion replied,<br> "I couldn't help it, it's my nature" =-<br>
------=_Part_226868_10636367.1157549544273--
