Gateway Timeout errors
-
Thank you
-
Not that I'm aware of. We have made some "unrelated" changes to the firewall in the last couple of months but I don't they have corresponded with my issues.
I'm having some issues with dates though. They didn't report the e-mail issues right away and we just started using acrobaticarts.ca.
-
If you have more than one IP address from your ISP, you could install a switch between your ISPs connection and your Cisco Firewall. Then assign the additional IP to a laptop that you plug directly into the switch. Make sure you can get on the internet. Then try the site. If you still can't get there, you have an ISP problem.
I have had this before where the ISP had an internal routing table problem and I couldn't reach the subnet the remote site was in.
-
Good idea. I'll try and do this as soon as I can without causing an interruption. I might be able to do it over the weekend.
-
@toxophilite said:
Good idea. I'll try and do this as soon as I can without causing an interruption. I might be able to do it over the weekend.
Assuming you're not a 24/7 shop, you could just unplug the ISP connection and plug it directly into the laptop. Depending on what kind of connection from your ISP you have, you might have to reboot their gear to get it to see the new equipment.
-
We are a community center so we are typically open from 5:00 AM - 10:00 PM. I think I can do it tomorrow without to much interruption.
-
Cool. Many of us will be around
-
Isolate the issue into digestible bits
Ping from your modem, then add an appliance and progress through your network stack until it fails
Edit: welcome to ML!
Edit2: Double welcome fellow Canajun.
Edit3: Fitness center? Non-profit? Truly a small world, me too
-
@Dashrender said:
24/7 sho
I tried this and I had no problem getting to any of these sites. It appears the problem is within my network.
-
Is your default gateway the firewall?
-
Do an nslookup of that address, is it resolving correctly?
-
Default gateway is the firewall. It works for all websites but these few.
-
nslookup resolves correctly.
-
@toxophilite said:
Default gateway is the firewall. It works for all websites but these few.
I wanted to make sure there wasn't another router to possibly look at that might be doing some filtering.
Sounds like your firewall is to blame here.
Can you post a sanitized version of your configuration?
-
That's what I'm beginning to think. Unfortunately I don't know the ASA very well. I'll need to bring someone in.
-
Would be cheaper to replace the ASA with a UBNT than to have someone come in to look at the ASA.
-
@scottalanmiller said:
Would be cheaper to replace the ASA with a UBNT than to have someone come in to look at the ASA.
It doesn't have near the features if you actually need what an ASA provides.
-
@toxophilite said:
That's what I'm beginning to think. Unfortunately I don't know the ASA very well. I'll need to bring someone in.
You need to bring someone in just to type
Enable
andShow Running-config
? -
I'm almost there with you. I used UBNT APs at my last job and loved them. I purchased a switch but it hadn't arrived when I left. Here at my new job we just built out our network and I let that vendor chose the hardware because of how complicated everything was. I definitely chose the wrong vendor.
How does the UBNT firewall stack up to other firewalls for security? As a Jewish organization we are always a target. I can't compromise on security. While I'm pretty sure I won't replace these with Cisco equipment I need to make sure that whatever I replace it with is very secure.
-
@toxophilite said:
I'm almost there with you. I used UBNT APs at my last job and loved them. I purchased a switch but it hadn't arrived when I left. Here at my new job we just built out our network and I let that vendor chose the hardware because of how complicated everything was. I definitely chose the wrong vendor.
How does the UBNT firewall stack up to other firewalls for security? As a Jewish organization we are always a target. I can't compromise on security. While I'm pretty sure I won't replace these with Cisco equipment I need to make sure that whatever I replace it with is very secure.
Define security, because that is not a thing. It is a firewall. It allows what you tell it to allow and it blocks what you tell it to block, like any other.