Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
379
Views
4
Helpful
3
Replies

Routing - Extra Hop Issue

GRANT3779
Spotlight
Spotlight

‎04-18-2013 08:22 AM - edited ‎03-04-2019 07:38 PM

Hi All,

I recently came across an issue and still unsure as to why this caused the problem that it did..

I'll explain..

All our services are hosted offsite (Exchange etc.). We will call this "HostedSite"

Site A had IP connectivity to the "HostedSite" (ping server addresses etc..). However Outlook would not connect.

Tracerts from Site A to HostedSite showed the expected path.

Tracerts from HostedSite back to Site A showed 1 extra hop at our HUB site (interim point between the 2), but apart from this, no issues.

After amending the routing and removing this extra 1 hop the return traffic took, Outlook connected and all was good.

Any idea why this 1 extra hop on the return traffic caused the problems, as both sites could ping each other but Outlook wouldn't connect until the return traffic took the exact same route back. I wouldn't have thought the route back mattered, as long as traffic could flow between the 2 sites?

Labels:
0 Helpful
3 Replies 3

Bilal Nawaz
VIP Alumni
VIP Alumni

‎04-18-2013 10:27 PM

Hello, if the traffic was flowing through firewalls the asymmetric routing would have broken any TCP connections that outlook tries to make to the CAS arrays/your exchange.

Even with a load-balancer you may have the same effect.

Hope this helps.

Sent from Cisco Technical Support iPhone App

Please rate useful posts & remember to mark any solved questions as answered. Thank you.

GRANT3779
Spotlight
Spotlight
In response to Bilal Nawaz

‎04-19-2013 03:51 AM

Thanks a lot for that. After doing some reading, that makes sense.

Would a Riverbed at each end of the traffic flow cause this at all?

0 Helpful

Bilal Nawaz
VIP Alumni
VIP Alumni
In response to GRANT3779

‎04-19-2013 04:28 AM

Is this a loadbalancer or the firewall appliances? This below, applies to both FW's and LB's in a standard configuration, so it is very possible that this was the cause. As soon as you fixed the asymmetric routing/paths, it makes sense that it started working again.

I'll try to explain a bit about what I think might be happening.

You have the TCP 3 way handshake right?

1) When a PC sends out an initial connection it sends out a SYN.

2) Exchange is meant to reply back with a SYN-ACK

3) And the client then responds with a ACK

So if we have asymmetric routing,

1) The client sends a SYN - this routes direct to the exchange (without the hop)

2) Exchange responds back with a SYN-ACK but sends that back to the hop - (This hop didnt see the first SYN, so it doesnt know why its getting a SYN-ACK, so its dropped)

And I think this is where the connection might have been broken.

Hope this helps.

Please rate useful posts and remember to mark any solved questions as answered. Thank you.

Please rate useful posts & remember to mark any solved questions as answered. Thank you.
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card