Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations SkipVought on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

PIX 501 slow web browsing

Status
Not open for further replies.
Astros

Astros

MIS
Dec 30, 2005
18
0
0
US
I just installed a PIX 501, not many modifications made to out of the box config at all, just some port forwarding for inbound traffic. I noticed that web browsing seems to drag much more than it did before when using a Linksys dsl router as the firewall. My first guess is that the core switch the firewall is plugged into is a Linksys 24 port unmanaged switch. I noticed the the inside interface of the pix is hard coated at 100full and thought the link to the autonegotiate ports on the switch might be causing the latency. When trying to configure the inside interface to auto, the pix would not let me. Does anyone have any ideas for a workaround for the 501 or any ideas if this is truly even the problem for the latency on the web browsing?

Sorry to be so long winded, but trying to provide some detail.

Thanks.
 
Sort by date Sort by votes
If you do a show interface what do you get?

If you ping or ftp is it slow? The slow www, is it all the time or when you do a dns lookup?

Marty
 
Upvote 0 Downvote
It seems to be when DNS lookups occur.
 
Upvote 0 Downvote
If you on one of your clients assign a different dnsserver, is it faster then?

Is the pix a dhcpserver or do you have a internal server handling that ( maybe win2003? )

Last question, do you have a internal dns?
 
Upvote 0 Downvote
I have a Win2003 server handling both DHCP and DNS for all clients. The pix is not running any dhcp functions. Haven't tried an external DNS server yet.
 
Upvote 0 Downvote
You could try to set the fixup protocol for dns to a higher value ( extensive dns on win2003 )

fixup protocol dns maximum-length 1544 ( dont remember he exact value )

The dnsserver is only internal right? Try a ipconfig/flushdns on the clients.
Dont think the problem is pix related.
 
Upvote 0 Downvote
Yes, DNS is only internal. I'll try it out. Thanks.
 
Upvote 0 Downvote
Hi Astros, I have what seems to be an identical problem (with identical setup). Have you sorted yours out yet? If so, how?

Ta, Adam
 
Upvote 0 Downvote
Unfortunately not yet, I have removed the PIX and am going to set it up at my house this weekend to see if acts the same way on my DSL line there. I will let post if I can resolve anything.
 
Upvote 0 Downvote
Astro, can you post the config?
so we can see what's wrong.

if it is dns related, use ip # instead of url for now, if it is faster.

go to dslreports.com/tools or other speed test sites, to test the speed of your internet connection. May sure your isp not ripping your off for what you paying.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

Nitta84
  • Locked
  • Question
navigation slow and tcp syc/ack drop
Replies
0
Views
86
Nitta84
Nitta84
xwray
  • Locked
  • Question
PIX 501 DHCP Server function
Replies
0
Views
34
xwray
xwray
ISDPCMAN
  • Locked
  • Question
Cannot connect to TZ-215 Sonicwall appliance with web browser!
Replies
0
Views
47
ISDPCMAN
ISDPCMAN
markd885
  • Locked
  • Question
PAC file redirect web page to another gateway
Replies
0
Views
45
markd885
markd885
brownmab53
  • Locked
  • Question
PIX 525 ASA not allowing DHCP addresses to pass through to router
Replies
0
Views
42
brownmab53
brownmab53

Part and Inventory Search

Sponsor

Back
Top