Tilted Forum Project Discussion Community - View Single Post - Click here if you can't connect to the TFP

fatmanforprez · 09-08-2008, 06:56 PM

Well, I am going to make a whole lot of assumptions and mix them with anecdotal evidence to say that i have a theory. Some background, I used to be a phone tech for a living and now I pretend to be a "Network Engineer".

Back when i was doing the 20 hardest calls that my brand took in any given day I would get about 1 call a week from a guy who had a site on a coloc. It was ALWAYS his own site that he could not reach.

To get to the punch line the problem was invariably that the web farm they had contracted their site out to had a bad habit of changing the TCP source port, without either dumbing the problem down or getting into techno-babble, this is bad form. SPI on the router would drop the connection (as it was designed to do and normally should do) and they had a problem with only their site.

The solution, disable SPI.

09-08-2008, 06:56 PM	#16 (permalink)
fatmanforprez Tilted	Well, I am going to make a whole lot of assumptions and mix them with anecdotal evidence to say that i have a theory. Some background, I used to be a phone tech for a living and now I pretend to be a "Network Engineer". Back when i was doing the 20 hardest calls that my brand took in any given day I would get about 1 call a week from a guy who had a site on a coloc. It was ALWAYS his own site that he could not reach. To get to the punch line the problem was invariably that the web farm they had contracted their site out to had a bad habit of changing the TCP source port, without either dumbing the problem down or getting into techno-babble, this is bad form. SPI on the router would drop the connection (as it was designed to do and normally should do) and they had a problem with only their site. The solution, disable SPI.