[nsp] Odd packet loss

Darren Smith darrensmith@barrysworld.com
Wed, 27 Nov 2002 16:44:07 -0000 

Hiya

I was denying all icmp, but just to one subnet
i.e.

access-list 150 deny icmp any x.x.x.x y.y.y.y log
access-list 150 permit ip any any

I've upgraded to 12.2(4)B7 now as well [which incidentally appears to have
fixed my mac-accounting bugs now ;)] and rebooted.

Ho hum

Darren.

----- Original Message -----
From: "Stephen J. Wilcox" <steve@telecomplete.co.uk>
To: "Darren Smith" <darrensmith@barrysworld.com>
Cc: <cisco-nsp@puck.nether.net>
Sent: Wednesday, November 27, 2002 4:32 PM
Subject: Re: [nsp] Odd packet loss


> Ello :)
>
> Are you allowing icmp frag and such like or blocking all icmp? Try just
blocking
> icmp echo and echo-reply you might be suppressing something useful to the
tcp
> protocol..
>
> Steve
>
> On Wed, 27 Nov 2002, Darren Smith wrote:
>
> > Hi folks
> >
> > Just wondering if anyone is using Cisco 7401's?
> >
> > we're currently on 12.2(4)B3 and have noticed some rather odd behavior a
day
> > after applying an access list that basically denies ICMP to a certain
subnet
> > (irc) and permits everything else.
> >
> > Not 100% sure if the ACL was the cause, nothing else has changed.
> >
> >  1  ge1-1.th1.uk.as21099.net (213.221.179.125)  21.655 ms  17.575 ms
19.553
> > ms
> >  2  * linx-1.vianw.net (195.66.224.28)  16.449 ms  34.034 ms
> >  3  * rt001thl.uk.vianw.net (213.2.253.6)  461.486 ms  917.751 ms
> >  4  * rt001wcr.uk.vianw.net (195.102.254.150)  25.384 ms  26.758 ms
> >  5  * 213.2.52.22 (213.2.52.22)  25.947 ms *
> >
> > It appears not just icmp is loosing packets, but TCP sessions have been
> > affected badly as well.
> >
> > Anyone had anything similar?
> >
> > Regards
> >
> > Darren Smith
> > Game Digital ltd
> >
> > _______________________________________________
> > cisco-nsp mailing list  real_name)s@puck.nether.net
> > http://puck.nether.net/mailman/listinfo/cisco-nsp
> > archive at http://puck.nether.net/pipermail/cisco-nsp/
> >
>
> _______________________________________________
> cisco-nsp mailing list  real_name)s@puck.nether.net
> http://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/
>