Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations IamaSherpa on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Totally Weird Problem: Can Access Internet But Cannot Ping It

Status
Not open for further replies.
Arsynic

Arsynic

MIS
Jun 17, 2003
141
Out of six nodes in my WAN two of them have been giving me a headache. I noticed that their respective Netware servers have been falling out of sync. So I pinged the time source locally and it was still up. I then tried to ping the same time source remotely from the server and I got no response? So something must be wrong with the Netware server right? Well, I tried to isolate that by attempting to ping that time source from a Terminal Server on the same node. Timeouts all the way through. So I try to ping " Timeouts. I then tried to ping another server from the WAN and guess what, it responds. I thought I had seen it all. Is it a problem with connecting to the Internet? Nope. I fired up the browser on the Terminal Server and I was able to browse to my hearts content. I even browsed by IP address instead of URL and it worked. So here's what I gathered:

--I can communicate with the Internet from both nodes.
--Both nodes are connected to the WAN via IDSN.
--I can ping all computers within the WAN with no problem.
--I can surf the net on the problem nodes.
--Both nodes started exhibiting the same problem at the same time.
--Both nodes have the same firewall hardware (but so does 4 other nodes).

The only thing I can come up with that intersects both sites is the IDSN. If they have the same ISP then maybe that's the problem. But if you guys can think of anything, please let me know.
 
Sort by date Sort by votes
Because of Denial of Service attacks many sites, and many routers, are refusing to carry ICMP traffic.

It is sad, but a ping test has become an iffy proposition unless you test an external site that you know will respond reliably to a ping request.

Consider using Tracert instead of ping.
 
Upvote 0 Downvote
Tracerts produce timeouts as well. Thanks for reminding me to mention that.
 
Upvote 0 Downvote
As the ISPs involved. Is tracert showing the timeouts on the inter-router side, or at the far end?
 
Upvote 0 Downvote
I can't tell.

It's like:

1 * * * * Request timed out.

2 * * * * Request timed out.

...and so on.
 
Upvote 0 Downvote
The first hop should be your router. (Is it blocking ICMP traffic?)

The second hop is then unreachable.

This strongly suggests a firewall setting on either the server or the router.
 
Upvote 0 Downvote
The ISP just called me and said that they changed their core router. We have a lot of that info hard coded into the firewall so that may be the problem...or not. We'll see.
 
Upvote 0 Downvote
Sounds like you are on the right track.

Best,
Bill Castner
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

robocat
  • Locked
  • Question
Yet another TCP RST flag problem
Replies
0
Views
534
robocat
robocat
jmarkus
  • Locked
  • Question
Can I have a different private IP address which isn't on my router's subnet?
Replies
6
Views
628
sbcsu
sbcsu
SirBlack
  • Locked
  • Question
Internet connection problem
Replies
5
Views
152
kjv1611
kjv1611
DrB0b
  • Locked
  • Question
Multiple WiNG Zebra Access Points with possible issue
Replies
1
Views
525
DrB0b
DrB0b
Guthro
  • Locked
  • Question
BT Loopback problem - finally resolved.
Replies
0
Views
114
Guthro
Guthro

Part and Inventory Search

Sponsor

Back
Top