1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

RV016 Firewall Issue

Discussion in 'Cisco Small Business Routers and VPN Solutions' started by giffordj, Aug 26, 2006.

  1. giffordj

    giffordj LI Guru Member

    I'm been fighting a firewall issue with the RV016, attempted to contact techsupport and they supposely opened up a case to higher level support, but I haven't heard anything yet.

    My network is setup in the following manner:
    Downstairs
    Westell 7400 DSL(Bridge Mode) -> Linksys OVG200 -> RV016 (Wa1)

    Downstairs to Upstairs
    RV016 -> Linksys SRW224 -> SPA-2102
    -> WAP-54G

    My issue is that I have a mythtv box that connects to the WAP-54G to download tv listings from Datadirect. This transfer stops only after 4K being transmitted. Upon going round and round with tech support, I tried to troubleshoot this myself because it seemed the people I was talking to were just following a script.

    What I found out is that if I disabled the firewall on the RV016, the transfer would work perfectly. If I enabled it, it would fail.

    I capture packets using iptraf on the mythtv box, here are those captures.

    Bad
    Fri Aug 25 10:47:55 2006; ******** IP traffic monitor started ********
    Fri Aug 25 10:47:58 2006; TCP; eth0; 60 bytes; from 192.168.1.160:54209 to 206.18.98.160:80; first packet (SYN)
    Fri Aug 25 10:47:58 2006; TCP; eth0; 60 bytes; from 206.18.98.160:80 to 192.168.1.160:54209; first packet (SYN)
    Fri Aug 25 10:47:58 2006; TCP; eth0; 52 bytes; from 192.168.1.160:54209 to 206.18.98.160:80; Connection reset; 6 packets, 1237 bytes, avg flow rate 9.00 kbits/s; opposite direction 3 packets, 579 bytes; avg flow rate 9.00 kbits/s
    Fri Aug 25 10:47:58 2006; TCP; eth0; 60 bytes; from 192.168.1.160:54210 to 206.18.98.160:80; first packet (SYN)
    Fri Aug 25 10:47:58 2006; TCP; eth0; 40 bytes; from 192.168.1.160:54209 to 206.18.98.160:80; Connection reset; 1 packets, 40 bytes, avg flow rate 0.00 kbits/s; opposite direction 0 packets, 0 bytes; avg flow rate 0.00 kbits/s
    Fri Aug 25 10:47:58 2006; TCP; eth0; 60 bytes; from 206.18.98.160:80 to 192.168.1.160:54210; first packet (SYN)
    Fri Aug 25 10:48:05 2006; ******** IP traffic monitor stopped ********

    Good
    Fri Aug 25 14:04:31 2006; ******** IP traffic monitor started ********
    Fri Aug 25 14:04:39 2006; TCP; eth0; 60 bytes; from 192.168.1.160:54853 to 206.18.98.160:80; first packet (SYN)
    Fri Aug 25 14:04:39 2006; TCP; eth0; 60 bytes; from 206.18.98.160:80 to 192.168.1.160:54853; first packet (SYN)
    Fri Aug 25 14:04:39 2006; TCP; eth0; 52 bytes; from 192.168.1.160:54853 to 206.18.98.160:80; Connection reset; 6 packets, 1237 bytes, avg flow rate 9.00 kbits/s; opposite direction 3 packets, 579 bytes; avg flow rate 9.00 kbits/s
    Fri Aug 25 14:04:39 2006; TCP; eth0; 60 bytes; from 192.168.1.160:54854 to 206.18.98.160:80; first packet (SYN)
    Fri Aug 25 14:04:40 2006; TCP; eth0; 60 bytes; from 206.18.98.160:80 to 192.168.1.160:54854; first packet (SYN)
    Fri Aug 25 14:04:40 2006; TCP; eth0; 40 bytes; from 192.168.1.160:54853 to 206.18.98.160:80; Connection reset; 1 packets, 40 bytes, avg flow rate 0.00 kbits/s; opposite direction 0 packets, 0 bytes; avg flow rate 0.00 kbits/s
    Fri Aug 25 14:06:04 2006; TCP; eth0; 580 bytes; from 206.18.98.160:80 to 192.168.1.160:54854; FIN sent; 1262 packets, 1762449 bytes, avg flow rate 165.87 kbits/s
    Fri Aug 25 14:06:04 2006; TCP; eth0; 52 bytes; from 192.168.1.160:54854 to 206.18.98.160:80; FIN acknowleged
    Fri Aug 25 14:06:04 2006; TCP; eth0; 52 bytes; from 192.168.1.160:54854 to 206.18.98.160:80; FIN sent; 1158 packets, 61354 bytes, avg flow rate 5.76 kbits/s
    Fri Aug 25 14:06:04 2006; TCP; eth0; 52 bytes; from 206.18.98.160:80 to 192.168.1.160:54854; FIN acknowleged
    Fri Aug 25 14:06:54 2006; ******** IP traffic monitor stopped ********

    Any ideas or suggestions?
     
  2. Toxic

    Toxic Administrator Staff Member

    Have you tried setting up an Access Rule to the blocked IP address.
     
  3. arr2036

    arr2036 Network Guru Member

    I have a very similar issue on an rv042 using Fedora Core 5, it'll load up some sites, some it won't load at all and others such as google.com it loads perfectly.

    Everything works fine once the firewall is disabled :(
     
  4. Toxic

    Toxic Administrator Staff Member

    what IP structure are you using is everything on the same subnet?
     
  5. giffordj

    giffordj LI Guru Member

    Everything of mine is 192.168.1.x subnet range.
     
  6. Toxic

    Toxic Administrator Staff Member

    so did you try setting up and access rule just for the ip that is having the problem?
     
  7. giffordj

    giffordj LI Guru Member

    Yes, I setup a rule from the target to source, and from the source to the target. Nothing worked.

    I also tried Linksys support said, and created a port forward from that port to 192.168.1.160 computer. That didn't work

    I also tried to disable SPI and DOS attacks in the firewall.

    I also tried setting up a one to one NAT, no luck their.
     
  8. Toxic

    Toxic Administrator Staff Member

    btw could you tell me what the Linksys OVG200 is?
     
  9. giffordj

    giffordj LI Guru Member

    It's the Network Optimizer. It helps priortize the packets, based on VoIP and gaming services.

    Also, I ran a test on a another Linux based PC and it worked, with the firewall enabled.

    Here's the test detail.

    Give this a try. Save this in a file called post-doc
    <?xml version='1.0' encoding='utf-8'?>
    <SOAP-ENV:Envelope
    xmlns:SOAP-ENV='http://schemas.xmlsoap.org/soap/envelope/'
    xmlns:xsd='http://www.w3.org/2001/XMLSchema'
    xmlns:xsi='http://www.w3.org/2001/XMLSchema-instance'
    xmlns:SOAP-ENC='http://schemas.xmlsoap.org/soap/encoding/'>
    <SOAP-ENV:Body>
    <ns1:download xmlns:ns1='urn:TMSWebServices'>
    <startTime xsi:type='xsd:dateTime'>
    2006-08-01T10:00:00Z
    </startTime>
    <endTime xsi:type='xsd:dateTime'>
    2006-08-10T10:00:00Z
    </endTime>
    </ns1:download>
    </SOAP-ENV:Body>
    </SOAP-ENV:Envelope>

    (Dates and times don't seem to matter for this test.)
    Then try this command, substituting for YOURUSER and YOURPASSWD,
    of course:

    wget --http-user='YOURUSER' --http-passwd='YOURPASSWD' \
    --post-file='post-doc' --header='Accept-Encoding:gzip' \
    http://datadirect.webservices.zap2it.com/tvlistings/xtvdService \
    --output-document=- | gunzip >test
     
  10. Toxic

    Toxic Administrator Staff Member

    sorry man i'm a windows man, dont have wget on any my systems.
     
  11. Toxic

    Toxic Administrator Staff Member

    lol was still looking for a OVG200 when it is really a OGV200 :) now i know.
     

Share This Page