ML
    • Recent
    • Categories
    • Tags
    • Popular
    • Users
    • Groups
    • Register
    • Login

    Gateway Timeout errors

    Scheduled Pinned Locked Moved IT Discussion
    43 Posts 7 Posters 10.6k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • toxophiliteT
      toxophilite @StrongBad
      last edited by

      @StrongBad

      Not that I'm aware of. We have made some "unrelated" changes to the firewall in the last couple of months but I don't they have corresponded with my issues.

      I'm having some issues with dates though. They didn't report the e-mail issues right away and we just started using acrobaticarts.ca.

      1 Reply Last reply Reply Quote 0
      • DashrenderD
        Dashrender
        last edited by

        If you have more than one IP address from your ISP, you could install a switch between your ISPs connection and your Cisco Firewall. Then assign the additional IP to a laptop that you plug directly into the switch. Make sure you can get on the internet. Then try the site. If you still can't get there, you have an ISP problem.

        I have had this before where the ISP had an internal routing table problem and I couldn't reach the subnet the remote site was in.

        toxophiliteT 2 Replies Last reply Reply Quote 0
        • toxophiliteT
          toxophilite @Dashrender
          last edited by

          @Dashrender

          Good idea. I'll try and do this as soon as I can without causing an interruption. I might be able to do it over the weekend.

          DashrenderD 1 Reply Last reply Reply Quote 0
          • DashrenderD
            Dashrender @toxophilite
            last edited by

            @toxophilite said:

            @Dashrender

            Good idea. I'll try and do this as soon as I can without causing an interruption. I might be able to do it over the weekend.

            Assuming you're not a 24/7 shop, you could just unplug the ISP connection and plug it directly into the laptop. Depending on what kind of connection from your ISP you have, you might have to reboot their gear to get it to see the new equipment.

            toxophiliteT 1 Reply Last reply Reply Quote 0
            • toxophiliteT
              toxophilite @Dashrender
              last edited by

              @Dashrender

              We are a community center so we are typically open from 5:00 AM - 10:00 PM. I think I can do it tomorrow without to much interruption.

              1 Reply Last reply Reply Quote 1
              • scottalanmillerS
                scottalanmiller
                last edited by

                Cool. Many of us will be around 🙂

                1 Reply Last reply Reply Quote 0
                • MattSpellerM
                  MattSpeller
                  last edited by MattSpeller

                  Isolate the issue into digestible bits

                  Ping from your modem, then add an appliance and progress through your network stack until it fails

                  Edit: welcome to ML!

                  Edit2: Double welcome fellow Canajun.

                  Edit3: Fitness center? Non-profit? Truly a small world, me too

                  1 Reply Last reply Reply Quote 0
                  • toxophiliteT
                    toxophilite @Dashrender
                    last edited by

                    @Dashrender said:

                    24/7 sho

                    I tried this and I had no problem getting to any of these sites. It appears the problem is within my network.

                    1 Reply Last reply Reply Quote 0
                    • DashrenderD
                      Dashrender
                      last edited by

                      Is your default gateway the firewall?

                      toxophiliteT 1 Reply Last reply Reply Quote 0
                      • scottalanmillerS
                        scottalanmiller
                        last edited by

                        Do an nslookup of that address, is it resolving correctly?

                        toxophiliteT 1 Reply Last reply Reply Quote 1
                        • toxophiliteT
                          toxophilite @Dashrender
                          last edited by

                          @Dashrender

                          Default gateway is the firewall. It works for all websites but these few.

                          DashrenderD 1 Reply Last reply Reply Quote 0
                          • toxophiliteT
                            toxophilite @scottalanmiller
                            last edited by

                            @scottalanmiller

                            nslookup resolves correctly.

                            1 Reply Last reply Reply Quote 0
                            • DashrenderD
                              Dashrender @toxophilite
                              last edited by Dashrender

                              @toxophilite said:

                              @Dashrender

                              Default gateway is the firewall. It works for all websites but these few.

                              I wanted to make sure there wasn't another router to possibly look at that might be doing some filtering.

                              Sounds like your firewall is to blame here.

                              Can you post a sanitized version of your configuration?

                              toxophiliteT 1 Reply Last reply Reply Quote 0
                              • toxophiliteT
                                toxophilite @Dashrender
                                last edited by

                                @Dashrender

                                That's what I'm beginning to think. Unfortunately I don't know the ASA very well. I'll need to bring someone in.

                                J 1 Reply Last reply Reply Quote 0
                                • scottalanmillerS
                                  scottalanmiller
                                  last edited by

                                  Would be cheaper to replace the ASA with a UBNT than to have someone come in to look at the ASA.

                                  J toxophiliteT 2 Replies Last reply Reply Quote 1
                                  • J
                                    Jason Banned @scottalanmiller
                                    last edited by

                                    @scottalanmiller said:

                                    Would be cheaper to replace the ASA with a UBNT than to have someone come in to look at the ASA.

                                    It doesn't have near the features if you actually need what an ASA provides.

                                    1 Reply Last reply Reply Quote 0
                                    • J
                                      Jason Banned @toxophilite
                                      last edited by

                                      @toxophilite said:

                                      @Dashrender

                                      That's what I'm beginning to think. Unfortunately I don't know the ASA very well. I'll need to bring someone in.

                                      You need to bring someone in just to type Enable and Show Running-config ?

                                      DashrenderD 1 Reply Last reply Reply Quote 0
                                      • toxophiliteT
                                        toxophilite @scottalanmiller
                                        last edited by

                                        @scottalanmiller

                                        I'm almost there with you. I used UBNT APs at my last job and loved them. I purchased a switch but it hadn't arrived when I left. Here at my new job we just built out our network and I let that vendor chose the hardware because of how complicated everything was. I definitely chose the wrong vendor.

                                        How does the UBNT firewall stack up to other firewalls for security? As a Jewish organization we are always a target. I can't compromise on security. While I'm pretty sure I won't replace these with Cisco equipment I need to make sure that whatever I replace it with is very secure.

                                        JaredBuschJ scottalanmillerS 2 Replies Last reply Reply Quote 0
                                        • JaredBuschJ
                                          JaredBusch @toxophilite
                                          last edited by

                                          @toxophilite said:

                                          @scottalanmiller

                                          I'm almost there with you. I used UBNT APs at my last job and loved them. I purchased a switch but it hadn't arrived when I left. Here at my new job we just built out our network and I let that vendor chose the hardware because of how complicated everything was. I definitely chose the wrong vendor.

                                          How does the UBNT firewall stack up to other firewalls for security? As a Jewish organization we are always a target. I can't compromise on security. While I'm pretty sure I won't replace these with Cisco equipment I need to make sure that whatever I replace it with is very secure.

                                          Define security, because that is not a thing. It is a firewall. It allows what you tell it to allow and it blocks what you tell it to block, like any other.

                                          scottalanmillerS 1 Reply Last reply Reply Quote 0
                                          • scottalanmillerS
                                            scottalanmiller @toxophilite
                                            last edited by

                                            @toxophilite said:

                                            How does the UBNT firewall stack up to other firewalls for security? As a Jewish organization we are always a target. I can't compromise on security. While I'm pretty sure I won't replace these with Cisco equipment I need to make sure that whatever I replace it with is very secure.

                                            I'd reverse that question... what makes Cisco acceptable equipment? Lower quality, higher price, leaves you at the mercy of consultants and offers no security above the minimum standard while being the top target simply because of its frequency of deployment.

                                            Cisco doesn't offer you any security here, Ubiquiti offers you a better product with equal security. It's Cisco that you should be questioning "if it stacks up", not the Ubiquiti. It is Cisco that almost never offers a value justifying its use. Ubiquiti doesn't have that problem.

                                            1 Reply Last reply Reply Quote 0
                                            • 1
                                            • 2
                                            • 3
                                            • 3 / 3
                                            • First post
                                              Last post