Re: Odd time outs and queue growth

From: (no name) (no email)
Date: Fri Feb 27 2004 - 14:46:56 EST

• Next message: Samuel Klatchko: "job opening"
• Previous message: Alexei Kuznetsov: "Group email address"
• Maybe in reply to: Joshua E Warchol: "Odd time outs and queue growth"
• Next in thread: Joshua E Warchol: "Re: Odd time outs and queue growth"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

On Fri, 27 Feb 2004, Joshua E Warchol wrote:

> I agree that it sounds most like a firewall mucking things up. I can only
> guess then that the firewalling device must be before my data gets onto
> the internet. I'll check with our Network Engineers, but they usually don't
> do things more detailed than blocking a port used by Worms/Virii.
>

Look for a NAT device running out of memory for connection state. Also
look for assymetric paths accross stateful firewalls, the inbound traffic
will be allowed only after you send outbound traffic, so if you have
redundant stateful firewalls and route flaps, the inbound traffic might
periodically switch to a firewall that has not seen any outbound traffic.

-- 
	Viktor.

• Next message: Samuel Klatchko: "job opening"
• Previous message: Alexei Kuznetsov: "Group email address"
• Maybe in reply to: Joshua E Warchol: "Odd time outs and queue growth"
• Next in thread: Joshua E Warchol: "Re: Odd time outs and queue growth"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]