10 second delay on outbound traffic
Posted: Thu Mar 10, 2011 7:31 pm
I sent a 433AH with a Dbii 2.4 card to a client 400 miles away. He plugged it in and everything inside the network works perfect. The problem is a 10 second delay when opening a browser, sending a call, even trace route from the server. Once it connects it works fine. I have checked everything I can think of and I'm at a loss as to what is wrong. I had the client put in the old router and there is no delay. Any suggestions or insight would be greatly appreciated.
The use the local cable company that bridges a public static. Eth1 is the WAN port. Eth2, Eth3 and Wlan are bridged and have DHCP enabled. Here is the config
[russ@FICO] > ip firewall nat print
Flags: X - disabled, I - invalid, D - dynamic
0 chain=srcnat action=masquerade src-address=192.168.1.0/24
out-interface=ether1
1 ;;; RDP
chain=dstnat action=dst-nat to-addresses=192.168.1.100 to-ports=3389
protocol=tcp dst-address=69.145.XXX.XXX dst-port=3389
2 ;;; vpn
chain=dstnat action=dst-nat to-addresses=192.168.1.100 to-ports=1723
protocol=tcp dst-address=69.145.XXX.XXX dst-port=1723
3 ;;; HTTPS
chain=dstnat action=dst-nat to-addresses=192.168.1.100 to-ports=443
protocol=tcp dst-address=69.145.XXX.XXX dst-port=443
4 ;;; HTTP
chain=dstnat action=dst-nat to-addresses=192.168.1.100 to-ports=80
protocol=tcp dst-address=69.145.XXX.XXX dst-port=80
5 ;;; FTP
chain=dstnat action=dst-nat to-addresses=192.168.1.100 to-ports=21
protocol=tcp dst-address=69.145.XXX.XXX dst-port=21
[russ@FICO] > ip route print
Flags: X - disabled, A - active, D - dynamic,
C - connect, S - static, r - rip, b - bgp, o - ospf, m - mme,
B - blackhole, U - unreachable, P - prohibit
# DST-ADDRESS PREF-SRC GATEWAY DISTANCE
0 A S 0.0.0.0/0 69.145.XXX.XXX 1
1 ADC 69.145.XXX.XXX/30 69.145.XXX.XXX ether1 0
2 ADC 192.168.1.0/24 192.168.1.1 lan bridge 0
The use the local cable company that bridges a public static. Eth1 is the WAN port. Eth2, Eth3 and Wlan are bridged and have DHCP enabled. Here is the config
[russ@FICO] > ip firewall nat print
Flags: X - disabled, I - invalid, D - dynamic
0 chain=srcnat action=masquerade src-address=192.168.1.0/24
out-interface=ether1
1 ;;; RDP
chain=dstnat action=dst-nat to-addresses=192.168.1.100 to-ports=3389
protocol=tcp dst-address=69.145.XXX.XXX dst-port=3389
2 ;;; vpn
chain=dstnat action=dst-nat to-addresses=192.168.1.100 to-ports=1723
protocol=tcp dst-address=69.145.XXX.XXX dst-port=1723
3 ;;; HTTPS
chain=dstnat action=dst-nat to-addresses=192.168.1.100 to-ports=443
protocol=tcp dst-address=69.145.XXX.XXX dst-port=443
4 ;;; HTTP
chain=dstnat action=dst-nat to-addresses=192.168.1.100 to-ports=80
protocol=tcp dst-address=69.145.XXX.XXX dst-port=80
5 ;;; FTP
chain=dstnat action=dst-nat to-addresses=192.168.1.100 to-ports=21
protocol=tcp dst-address=69.145.XXX.XXX dst-port=21
[russ@FICO] > ip route print
Flags: X - disabled, A - active, D - dynamic,
C - connect, S - static, r - rip, b - bgp, o - ospf, m - mme,
B - blackhole, U - unreachable, P - prohibit
# DST-ADDRESS PREF-SRC GATEWAY DISTANCE
0 A S 0.0.0.0/0 69.145.XXX.XXX 1
1 ADC 69.145.XXX.XXX/30 69.145.XXX.XXX ether1 0
2 ADC 192.168.1.0/24 192.168.1.1 lan bridge 0