Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
390
Views
0
Helpful
2
Replies

Connectivety Problem after switching router/link

gohengchai
Level 1
Level 1

‎07-17-2006 07:29 AM - edited ‎03-03-2019 01:21 PM

Dear All,

I'm stuck with a problem encountered recently, hope the kind souls here

could give me a clue to the problem.

Currently we have a 64kbps circuit to a remote site and we have plan to

move it to a new circuit (T1) on a new router. I have recently

performed a test on a new circuit (faster) on the new router to the

remote site.

I configured the new router on the T1 having the same internal

interface IP address so that I do not have to change the default

gateway on the clients configured with static addresses. I did the

switch by disconnecting the link on the router connected to the 64kbps.

All went well except only a single host at secured vlan20 and another

host at the remote site have problems connecting to each other.The

affected host on vlan20 has no problems connecting to the other hosts

at the remote site.

The connectivety between the other secured vlans to the hosts at the

remote site is fine.

host on vlan20--FWSM--6509--Checkpoint--1721--{IPVPN}--1721--Remote

Site

I have cleared the arp-cache on the connected routers/switches/hosts

and even reloaded the devices but it didnt help. traceroute from the

remote site stops at the 6509 core switch and I dont see anything

hitting vlan20 from the FWSM logs. I do see outgoing traffic from the

host on vlan20 hitting the access-list created on the FWSM but it didnt

even hit the checkpoint firewall. It looks likes the traffic stops at

the 6509 but there are no access list applied. ARP Proxy is enabled on the FWSM. Once I switched back to the 65kbps circuit, everything was back to normal.

I'm missing out on something after the change. Strange that it only

happens on this particular host. Hope you guys could advise me.

Thanks,

ecgoh

Labels:
0 Helpful
2 Replies 2

globalnettech
Level 5
Level 5

‎07-17-2006 11:15 PM

Hello,

when you say 'secured VLAN', what are you referring to, configuration-wise ? Can you post the configurations of all devices involved, and indicate which IP addresses are not able to connect to each other ?

Regards,

GNT

0 Helpful

jackyoung
Level 6
Level 6

‎07-18-2006 12:03 AM

Do you mean only occured at two hosts, one at VLAN 20 and one at remote site ? If it is only changed the from 64k to T1, it shouldn't be any L3 problem.

How about if the host at remote try to connect to that host at VLAN 20 ? Where is the packet stop ?

Did you checked w/ the IPVPN provider ?

I suggest to clear the cache of 6509 and firewall as well if possible.

Configuration files are required for detail investigation.

Hope this helps.

0 Helpful
Customers Also Viewed These Support Documents