i recently (12/20) had a frame relay circuit provisioned for a remote site (56k) circuit.
i have never used frame relay before. telco said i was all provisioned, i set up a cyclades
router and a used adtran dsu iq on site. icmp packets work from router and then set up a couple of freebsd machines and a windowz host on a ethernet behind the router.
i still cannot get any http service working and udp (on dns ports) is messed up as well.
basically (using tcpdump ) i see that my syn packets are sent syn responses are received and then after my system acknowledges the servers syn response no data is in furthur tcp packet i get.
here is some logged output:
04:21:50.675938 wb3.aol.com.1655 > greh.com.http: S 173360093:173360093(0) win 65535 <mss 1452,nop,wscale 0,nop,nop,timestamp 0 0,n
04:21:50.937057 greh.com.http > wb3.aol.com.1655: S 2779533999:2779533999(0) ack 173360094 win 5840 <mss 1460,nop,nop,sackOK,nop,ws
04:21:50.937320 wb3.aol.com.1655 > greh.com.http: . ack 1 win 65535 (DF) [tos 0xe,ECT] (ttl 128, id 39690)
04:21:50.939937 wb3.aol.com.1655 > greh.com.http: P 1:264(263) ack 1 win 65535 (DF) [tos 0xe,ECT] (ttl 128, id 39946)
04:21:51.266680 greh.com.http > wb3.aol.com.1655: . ack 264 win 6432 (DF) (ttl 45, id 55129)
04:21:51.420464 greh.com.http > wb3.aol.com.1655: F 1076:1076(0) ack 264 win 6432 (DF) (ttl 45, id 55131)
i am not running any firewall (yet) on my equipment and i was not planning on it until i could verify the circuit is good etc. i tend to believe the problem is with a firewall at my isp but since i have no working experience and little knowledge of frame relay i wonder if there is not a problem with data getting stripped out of packets crossing the frame network.
i have viewed roughly 2 megabytes of tcpdump data and i only saw one packet that had any data that was from a machine not located on my network, (even that one packet raises some questions, how did it get through).
i have just about exhausted the possibilities on my end without actually trying a different router or csu/dsu the question i have, is it a good idea to try such a replacement now? (considerable cost unless i can borrow some equip.) or approach the telco.
i am not particularly technical proficient and the network specialists that i talked to during provisioning were basically clueless, should i insist on getting a system admin that knows the network at the isp and what would be a good way to approach the telco, to do this?
any ideas about what may be causing this behavior is muchly appreciated!
best,
aaron
btw, no i do not work for aol ; -)))
i have never used frame relay before. telco said i was all provisioned, i set up a cyclades
router and a used adtran dsu iq on site. icmp packets work from router and then set up a couple of freebsd machines and a windowz host on a ethernet behind the router.
i still cannot get any http service working and udp (on dns ports) is messed up as well.
basically (using tcpdump ) i see that my syn packets are sent syn responses are received and then after my system acknowledges the servers syn response no data is in furthur tcp packet i get.
here is some logged output:
04:21:50.675938 wb3.aol.com.1655 > greh.com.http: S 173360093:173360093(0) win 65535 <mss 1452,nop,wscale 0,nop,nop,timestamp 0 0,n
04:21:50.937057 greh.com.http > wb3.aol.com.1655: S 2779533999:2779533999(0) ack 173360094 win 5840 <mss 1460,nop,nop,sackOK,nop,ws
04:21:50.937320 wb3.aol.com.1655 > greh.com.http: . ack 1 win 65535 (DF) [tos 0xe,ECT] (ttl 128, id 39690)
04:21:50.939937 wb3.aol.com.1655 > greh.com.http: P 1:264(263) ack 1 win 65535 (DF) [tos 0xe,ECT] (ttl 128, id 39946)
04:21:51.266680 greh.com.http > wb3.aol.com.1655: . ack 264 win 6432 (DF) (ttl 45, id 55129)
04:21:51.420464 greh.com.http > wb3.aol.com.1655: F 1076:1076(0) ack 264 win 6432 (DF) (ttl 45, id 55131)
i am not running any firewall (yet) on my equipment and i was not planning on it until i could verify the circuit is good etc. i tend to believe the problem is with a firewall at my isp but since i have no working experience and little knowledge of frame relay i wonder if there is not a problem with data getting stripped out of packets crossing the frame network.
i have viewed roughly 2 megabytes of tcpdump data and i only saw one packet that had any data that was from a machine not located on my network, (even that one packet raises some questions, how did it get through).
i have just about exhausted the possibilities on my end without actually trying a different router or csu/dsu the question i have, is it a good idea to try such a replacement now? (considerable cost unless i can borrow some equip.) or approach the telco.
i am not particularly technical proficient and the network specialists that i talked to during provisioning were basically clueless, should i insist on getting a system admin that knows the network at the isp and what would be a good way to approach the telco, to do this?
any ideas about what may be causing this behavior is muchly appreciated!
best,
aaron
btw, no i do not work for aol ; -)))
