+ Post New Thread
Page 1 of 2 12 LastLast
Results 1 to 15 of 17
Wireless Networks Thread, Strange routing issue? in Technical; I've got an issue connecting to our Cachepilot box which is connected to one of our edge switches, and set ...
  1. #1

    localzuk's Avatar
    Join Date
    Dec 2006
    Location
    Minehead
    Posts
    17,684
    Thank Post
    516
    Thanked 2,452 Times in 1,898 Posts
    Blog Entries
    24
    Rep Power
    832

    Strange routing issue?

    I've got an issue connecting to our Cachepilot box which is connected to one of our edge switches, and set to be connected to our server vlan.

    Machines on all our edge switches can connect to it fine, in any of the different VLANs in place. Other servers can connect to it fine, and they're connected to the core switch and in the server vlan, the same as the cachepilot.

    No pinging, no traceroute. Nowt.

    If I put my desktop machine in the servers vlan, it works fine.

    The subnet masks are all correct too, so it isn't that.

    I'm at a bit of a loss!

    Any ideas?

  2. #2
    Admiral208's Avatar
    Join Date
    Mar 2008
    Location
    Bridgwater
    Posts
    720
    Thank Post
    176
    Thanked 63 Times in 55 Posts
    Rep Power
    40
    I cant really see what the problem is here?

    Do you mean that its just your machine that cant connect?

  3. #3

    localzuk's Avatar
    Join Date
    Dec 2006
    Location
    Minehead
    Posts
    17,684
    Thank Post
    516
    Thanked 2,452 Times in 1,898 Posts
    Blog Entries
    24
    Rep Power
    832
    All machines connected to our core switch and aren't in the server vlan cannot connect. But all machines on other switches, on othert VLANs can connect.

    So, the core switch is routing between the vlans for this unit for edge switches, but not for itself.

  4. #4


    Join Date
    Jan 2006
    Posts
    8,202
    Thank Post
    442
    Thanked 1,032 Times in 812 Posts
    Rep Power
    339
    what can't connect? The clients?

    Possibly a windows firewall misconfig?

    Windows Firewall > exceptions > Custom list of domains.
    You can set in Group Policy..

  5. #5

    localzuk's Avatar
    Join Date
    Dec 2006
    Location
    Minehead
    Posts
    17,684
    Thank Post
    516
    Thanked 2,452 Times in 1,898 Posts
    Blog Entries
    24
    Rep Power
    832
    All clients on the core switch, that aren't in the server vlan. No firewalls are enabled.

  6. #6

    mac_shinobi's Avatar
    Join Date
    Aug 2005
    Posts
    9,759
    Thank Post
    3,269
    Thanked 1,052 Times in 973 Posts
    Rep Power
    365
    When you say connect you mean as in a WEB GUI or as in just being able to ping / traceroute etc ?

    Only asking as wondering if proxy settings has anything to do with it ?

    It's not just the port on the switch you have your machine connected to thats duff or maybe mis configured ??

  7. #7

    localzuk's Avatar
    Join Date
    Dec 2006
    Location
    Minehead
    Posts
    17,684
    Thank Post
    516
    Thanked 2,452 Times in 1,898 Posts
    Blog Entries
    24
    Rep Power
    832
    I mean all connectivity. Not just web, so proxy has nothing to do with it.

    And the ports are fine on the switch, as it'd mean 40+ of them were duff, on multiple modules. So, very unlikely.

  8. #8
    AJT1's Avatar
    Join Date
    Nov 2007
    Location
    North East
    Posts
    83
    Thank Post
    13
    Thanked 5 Times in 5 Posts
    Rep Power
    15
    How are you routing between the VLAN's? Do you have an ACL somewhere only defining inter-vlan communication for specfiic protocols/IP's to route to the server VLAN?

  9. #9

    localzuk's Avatar
    Join Date
    Dec 2006
    Location
    Minehead
    Posts
    17,684
    Thank Post
    516
    Thanked 2,452 Times in 1,898 Posts
    Blog Entries
    24
    Rep Power
    832
    Quote Originally Posted by AJT1 View Post
    How are you routing between the VLAN's? Do you have an ACL somewhere only defining inter-vlan communication for specfiic protocols/IP's to route to the server VLAN?
    Inter-Vlan routing is done by our core switch, a HP Procurve 5406zl. There are no ACLs in place, other than some rules to enable some broadcast traffic to traverse the VLANs (for ABTutor Control). So, all inter-vlan traffic is permitted.

  10. #10

    SYNACK's Avatar
    Join Date
    Oct 2007
    Posts
    11,170
    Thank Post
    868
    Thanked 2,697 Times in 2,287 Posts
    Blog Entries
    11
    Rep Power
    772
    Sounds like your VLAN config on the core switch, are the workstations on the core in the same VLAN as the clients on the edge switches, if not are they setup into another (non-default) VLAN with the same routing rules?

  11. #11

    localzuk's Avatar
    Join Date
    Dec 2006
    Location
    Minehead
    Posts
    17,684
    Thank Post
    516
    Thanked 2,452 Times in 1,898 Posts
    Blog Entries
    24
    Rep Power
    832
    Quote Originally Posted by SYNACK View Post
    Sounds like your VLAN config on the core switch, are the workstations on the core in the same VLAN as the clients on the edge switches, if not are they setup into another (non-default) VLAN with the same routing rules?
    Yup, same VLAN. The core vlan tables are the same as the edge switches. Everything else works across them, just not this one cachepilot box.

    All vlans are basically identical, just with different names and different IP address ranges.

    I've attached the core config and the edge config so you can see. I can't see anything that could cause this.

    Edit: the cachepilot is on port 24 of the edge switch there, and my machines are on C23 and D11 of the core.
    Attached Files Attached Files
    Last edited by localzuk; 5th April 2011 at 08:19 AM.

  12. #12

    SYNACK's Avatar
    Join Date
    Oct 2007
    Posts
    11,170
    Thank Post
    868
    Thanked 2,697 Times in 2,287 Posts
    Blog Entries
    11
    Rep Power
    772
    Not sure about the config as I am more used to cisco, where are the ports assigned to the VLANs. Anyhow I was just wondering how the routing back from the cachpiolet is sorted. Is it a bunch of static routes or are you grabbing advertised routing information from the core using something like RIPv2.

    Have you tried creating another VLAN for the systems on the core switch with a different address space to see if that allows routing to take place.

    I guess the other thing to check is the firmware level on the core, maybe a bug in the core routing that could have been fixed in a later revision although I expect that you probably have the latest firmware on there anyhow.

  13. #13

    localzuk's Avatar
    Join Date
    Dec 2006
    Location
    Minehead
    Posts
    17,684
    Thank Post
    516
    Thanked 2,452 Times in 1,898 Posts
    Blog Entries
    24
    Rep Power
    832
    I'm not sure what you mean regarding the routing. It is simply a normal 'computer' so nothing special happens routing-wise.

    I've not tried anything which requires a restart of the core yet - Ofsted in today, so not willing to fiddle...

    The core is on the latest firmware. Edge switches aren't.

  14. #14

    SYNACK's Avatar
    Join Date
    Oct 2007
    Posts
    11,170
    Thank Post
    868
    Thanked 2,697 Times in 2,287 Posts
    Blog Entries
    11
    Rep Power
    772
    The cachepiolet connects to the internet right and acts as a proxy?

    If it has a default route that points out to the interent it means that if you do any internal routing (which you do) it means that the cach piolet is not diretly connected to all the internal subnets and so does not know about them, in order to respond to them it would try to send the reply via its default gateway (the internet). The way around this is to tell the proxy about the internal networks and give it a route to get to them (the internal core router address). You can do this manually via static routes on the box or automagicly by advertising the routes from the core via a routing protocol like RIPv2(need v2 as you are using CIDR).

    If one of these static routes in the proxy was a little screwy then it could cause issues like this.

    I may have misunderstood the situation so could be off on a tangent though.

  15. #15

    localzuk's Avatar
    Join Date
    Dec 2006
    Location
    Minehead
    Posts
    17,684
    Thank Post
    516
    Thanked 2,452 Times in 1,898 Posts
    Blog Entries
    24
    Rep Power
    832
    No, we don't use it as a proxy. It is used for hosting Channel 4 Learning stuff (clipbank and espresso). So, it is a web server basically, which automatically pulls data from them and caches it.

SHARE:
+ Post New Thread
Page 1 of 2 12 LastLast

Similar Threads

  1. Strange XP Issue on 1 PC (Settings)
    By speckytecky in forum Windows
    Replies: 5
    Last Post: 12th January 2011, 02:16 PM
  2. Strange Activeboard Issue
    By CHR1S in forum Hardware
    Replies: 6
    Last Post: 3rd March 2010, 10:08 AM
  3. ISA 2006 - Flash routing issue
    By timlineuk in forum Internet Related/Filtering/Firewall
    Replies: 1
    Last Post: 3rd February 2010, 01:59 PM
  4. Strange Log Off Issue
    By richard in forum Windows
    Replies: 30
    Last Post: 6th December 2007, 09:16 AM
  5. Strange DNS issue
    By edie209 in forum Windows
    Replies: 10
    Last Post: 3rd July 2006, 01:15 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •