We help IT Professionals succeed at work.

Odd networking issue

Sean Rhudy
Sean Rhudy asked
on
201 Views
Last Modified: 2014-12-26
Our main internet connection is Windstream and we have a backup Verizon DSL line.  The Windstream connection uses a Linksys RV220W router.  We manually switch the cable to the DSL Westell router if ever needed.

We were starting to experience random network issues.  Some computers were getting random errors in our Database software and ping tests showed some small packet loss.  When we switch over to DSL, the problems immediately go away.  If we switch back to the Windstream connection, the issues come back, but not right away.  Normally it takes an hour or so but ALWAYS comes back.  We replaced the RV220W router and upgraded the firmware in it.  Our 2 servers are fully patched.   I've done a deep malware scan on both servers.  The only thing that makes sense to me is some kind of flood attach to the Windstream IP address.  Unfortunately the RV220W logs don't tell me much.  Any ideas?
Comment
Watch Question

What kind of connection is the Windstream pipe? Ethernet handoff, etc.?
Here's a test you could do to at least doublecheck yourself and isolate the issue.
Switch over to DSL for the time being, since that's a stable connection.
Connect a computer or small test network directly to the Windstream pipe, and see if the creeping errors recur, or if it stays clean. You'll likely have to re-address whatever computer you connect to the Windstream pipe unless they hand out DHCP to you, but it'd be a good way to show Windstream 'this connection suffers packet loss/latency/other issues separate of any of our internal infrastructure'.
Fred MarshallPrincipal
CERTIFIED EXPERT

Commented:
Presumably the RV is not set in failover mode, correct?
CERTIFIED EXPERT
Top Expert 2014

Commented:
What logging options have you enabled on the RV220W?
CERTIFIED EXPERT

Commented:
I have had a similar issue with a netgear modem/router.
I disabled IP flood (Syn flood) detection in the firewall settings and now it is much better...
I run a local DNS inside my LAN (behind the NAT) and it seems that DNS queries are detected as "syn-flood" attacks
Sean RhudyPresident

Author

Commented:
rharland2009; Yes, it's an ethernet handoff. I switched over to the DSL line and I connected a single laptop with a static IP for testing. So far, everything looks good.

fmarshall: No, it's not in failover mode.

giltjr: I have enabled all logging, but the logging in this device is not the best.  There isn't much in the logs at all.

vivigatt: I disabled Syn Flood detection, but same issues.
CERTIFIED EXPERT

Commented:
Have you tried completely disabling the firewall and see if this is any better ?
President
Commented:
This one is on us!
(Get your first solution completely free - no credit card required)
UNLOCK SOLUTION
Fred MarshallPrincipal
CERTIFIED EXPERT

Commented:
What does this mean:
the correct server, but wrong info.
?
CERTIFIED EXPERT

Commented:
You meant a rogue DHCP server ?
Sean RhudyPresident

Author

Commented:
Unplugging the extender fixed the issue.
Unlock the solution to this question.
Join our community and discover your potential

Experts Exchange is the only place where you can interact directly with leading experts in the technology field. Become a member today and access the collective knowledge of thousands of technology experts.

*This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

OR

Please enter a first name

Please enter a last name

8+ characters (letters, numbers, and a symbol)

By clicking, you agree to the Terms of Use and Privacy Policy.