Hi Guys!
I'm new here to the forums.. but not to networking. Hopefully I can receive some help -- and be a help to some of you as well in the future.
:thumbsup:
Well, straight to the issue!
I recently moved to a new location and just signed up with a new ISP. Now, the internet connection seems to be nailed up just fine. I won't loose a ping. I'm running their equipment in bridge mode.. passing the public address onto my Cisco ASA firewall which then is powering a few PoE AP's, etc. Same setup as I had a my previous location which worked with no issues.
Well, anyway, I noticed that webpages started timing out waiting for them to fully load... and then of course half loaded pages as well. I can't even get to speedtest.net to save my life. I was using public DNS servers (4.2.2.2, 8.8.8.8), which I've never had a problem with before.. but, I decided to try using my new ISP's DNS servers instead. I've had quite some trouble finding a list of FairPoint Communications DNS servers... but I came across two finally. I put them in and it seemed to help... a little... well, no... some of these pages are still not loading.
That's when I decided to try another test. I fired up my VPN client that tunnels all my traffic back to work.. and sure enough, all the pages loaded instantly. It's blazing fast and working like a charm. I disconnect from the VPN client and the issue returns.
I ran a few wireshark captures and seen a lot of TCP out of orders and what not. I decided to adjust the MTU size in the firewall out to the WAN.. but, didn't help at all. I've tried other DNS servers.. no luck their either.
Has anyone ever run into this before? I suppose in the morning when I'm not so tired, I will plug my laptop directly into the ISP's equipment and establish my PPPOE connection from there and bypass the firewall to see if there's something there... but, I kind of doubt it seeing as how I can use my VPN client to access everything I need. Which to me says that.. it's all going over the same wire... it's just the ISP can't manipulate my traffic in someway or another when it's encrypted. So, what am I doing that they don't like or that's causing an issue. Phew! So frustrating!
Anyway, again, glad to be here and hope to hear from you all!
I'm new here to the forums.. but not to networking. Hopefully I can receive some help -- and be a help to some of you as well in the future.
:thumbsup:Well, straight to the issue!
I recently moved to a new location and just signed up with a new ISP. Now, the internet connection seems to be nailed up just fine. I won't loose a ping. I'm running their equipment in bridge mode.. passing the public address onto my Cisco ASA firewall which then is powering a few PoE AP's, etc. Same setup as I had a my previous location which worked with no issues.
Well, anyway, I noticed that webpages started timing out waiting for them to fully load... and then of course half loaded pages as well. I can't even get to speedtest.net to save my life. I was using public DNS servers (4.2.2.2, 8.8.8.8), which I've never had a problem with before.. but, I decided to try using my new ISP's DNS servers instead. I've had quite some trouble finding a list of FairPoint Communications DNS servers... but I came across two finally. I put them in and it seemed to help... a little... well, no... some of these pages are still not loading.
That's when I decided to try another test. I fired up my VPN client that tunnels all my traffic back to work.. and sure enough, all the pages loaded instantly. It's blazing fast and working like a charm. I disconnect from the VPN client and the issue returns.
I ran a few wireshark captures and seen a lot of TCP out of orders and what not. I decided to adjust the MTU size in the firewall out to the WAN.. but, didn't help at all. I've tried other DNS servers.. no luck their either.
Has anyone ever run into this before? I suppose in the morning when I'm not so tired, I will plug my laptop directly into the ISP's equipment and establish my PPPOE connection from there and bypass the firewall to see if there's something there... but, I kind of doubt it seeing as how I can use my VPN client to access everything I need. Which to me says that.. it's all going over the same wire... it's just the ISP can't manipulate my traffic in someway or another when it's encrypted. So, what am I doing that they don't like or that's causing an issue. Phew! So frustrating!
Anyway, again, glad to be here and hope to hear from you all!
Facebook
Twitter