Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 7 replies
  • Subscribers 4 subscribers
  • Views 3752 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Dropped Packets?

deputycag
When I ping -t the next hope of my firewall I get packet loss.  about 60%.  Anyone have any ideas?


This thread was automatically locked due to age.
  • 0
    Bad Ethernet cable?  Bad Ethernet NIC?  Mismatched MTUs?  NIC and switch/router not agreeing on duplexing and or speed?
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson
    I am using pingplotter and packets show loss only on the firewall, not any other hops.  I will look into the stuff you posted and get back.
  • 0 in reply to deputycag
    It's the ICMP flood protection on the firewall. Create an exception if you need, or temporarily disable it for testing.

    Barry
  • 0
    Barry, is the flood protection really set that tight blocking pings a second or so apart?

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson
    I have an exception to for this PC.  I also have tried to disable all intrustion detection and flood protection.  

    Nic cards are new, tried different cables.  All set to same MTU and AutoNeg for Gigabit Full Duplex.
  • 0 in reply to BAlfson
    Barry, is the flood protection really set that tight blocking pings a second or so apart?

    Cheers - Bob


    I've seen it block MTR and other common tools.

    Barry
  • 0 in reply to deputycag
    I have an exception to for this PC.  I also have tried to disable all intrustion detection and flood protection.  

    Nic cards are new, tried different cables.  All set to same MTU and AutoNeg for Gigabit Full Duplex.


    Hi, please check the packetfilter log, IPS log, and also run 'ifconfig' and make sure there are no interface errors.

    Barry