Home News Forum Articles
  Welcome back Join CF
You are here You are here: Home | Forum | Hardware VPNs

You are currently viewing our boards as a guest which gives you limited access to view most of the discussions, articles and other free features. By joining our Virgin Media community you will have full access to all discussions, be able to view and post threads, communicate privately with other members (PM), respond to polls, upload your own images/photos, and access many other special features. Registration is fast, simple and absolutely free so please join our community today.


Welcome to Cable Forum
Go Back   Cable Forum > Computers & IT > Networking
Reload this Page Hardware VPNs
Register FAQ Community Calendar

Hardware VPNs
Reply
 
Thread Tools
Old 22-11-2006, 00:34   #1
greencreeper
Inactive
 
Join Date: Nov 2003
Location: Leeds - the dog house
Age: 46
Services: Email me for a current price list
Posts: 8,270
greencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny star
greencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny star
Question Hardware VPNs
Might be one for the hardcore-CCNP-types out there...

Scenario: Cisco, hardware-based VPN ceases to function on a random basis - remote clients cannot access an application on a server. Rebooting the server fixes the problem. Nothing wrong with the server - Event Logs clear. Configured fine vis networking. Nothing wrong with the application - clients on the network local to the server are functioning fine. Oddly, all was fine before installing Service Pack 1 (Windows Server 2003), and it has been suggested that this is the issue. I've taken a look at Service Pack 1 includes, and there are various changes, many designed to increase security. Some directly modify the behaviour of TCP/IP.

I'm struggling to understand how rebooting the server would help, since the VPN should be transparent to the server, no? Unless the server is doing something, or there is something about TCP/IP traffic that is routed via a VPN. But it's random though

Anyone know of or encountered any issues?
greencreeper is offline   Reply With Quote
Advertisement
Old 22-11-2006, 00:49   #2
The Jackal
Inactive
 
Join Date: Oct 2006
Posts: 1,604
The Jackal has a bronzed appealThe Jackal has a bronzed appeal
The Jackal has a bronzed appealThe Jackal has a bronzed appealThe Jackal has a bronzed appealThe Jackal has a bronzed appealThe Jackal has a bronzed appealThe Jackal has a bronzed appealThe Jackal has a bronzed appealThe Jackal has a bronzed appealThe Jackal has a bronzed appeal
Re: Hardware VPNs
what is it a catalyst ? Have you got sticky connections set on the catalyst side ?

Check how many open sockets you have on the server.
The Jackal is offline   Reply With Quote
Old 22-11-2006, 09:19   #3
greencreeper
Inactive
 
Join Date: Nov 2003
Location: Leeds - the dog house
Age: 46
Services: Email me for a current price list
Posts: 8,270
greencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny star
greencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny star
Re: Hardware VPNs
No idea what a Catalyst is. The VPN itself is a mystery - I have no idea what it is and have no access to it. I thought about sockets (and ports) but the network/clients local to the server are fine. The traffic will be Telnet - nothing complicated. I've disabled a new feature in Service Pack 1 that tries to thawt SYN attacks (not entirely sure what these are). It might also be needing a hotfix - will have to check his on Friday though.

It bothers me when I can't fix things - I have a failure complex
greencreeper is offline   Reply With Quote
Old 22-11-2006, 09:39   #4
The Jackal
Inactive
 
Join Date: Oct 2006
Posts: 1,604
The Jackal has a bronzed appealThe Jackal has a bronzed appeal
The Jackal has a bronzed appealThe Jackal has a bronzed appealThe Jackal has a bronzed appealThe Jackal has a bronzed appealThe Jackal has a bronzed appealThe Jackal has a bronzed appealThe Jackal has a bronzed appealThe Jackal has a bronzed appealThe Jackal has a bronzed appeal
Re: Hardware VPNs
Well if you can get on the box and do a netstat that would be great....

If you have like thousands of open/waiting sockets then there resides your problem...

Wouldnt worry about SYN attacks unless you dont trust your authorized users : machine should be firewalled anyway ?
The Jackal is offline   Reply With Quote
Old 22-11-2006, 14:34   #5
greencreeper
Inactive
 
Join Date: Nov 2003
Location: Leeds - the dog house
Age: 46
Services: Email me for a current price list
Posts: 8,270
greencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny star
greencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny stargreencreeper has a nice shiny star
Re: Hardware VPNs
Will have a look at the ports if the issue occurs again.

This is Microsoft for - they're not content to write software full of holes. Have to add "features" in Service Packs that cause all manner of problems.
greencreeper is offline   Reply With Quote
Reply

« Previous Thread | Next Thread »

Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump


All times are GMT +1. The time now is 19:46.

Contact Us - Service Status - Cable Forum - Archive - Privacy Statement - Terms of Service - Top

Server: osmium.zmnt.uk
Powered by vBulletin® Version 3.8.11
Copyright ©2000 - 2024, vBulletin Solutions Inc.

Copyright © 2024 Cable Forum Hosted On Hetzner Cloud