Hello, we’re having some issues with staying connected via winbox.
Here’s what we have:
1 RB493AH running 5.6
1 RB493G running 5.6
Both have the same cfgs loaded on them, ether1 has the “lan” ips of .135.0/24 and of .15.0/24 (clients/core equipment) with ether 2-9 having DSL/IPD-SLAM’s connected to them
Problem:
Lose access to the RB from the client IP network (.135.0/24) from 1 or 2 pcs, while others work just fine. the PCs that lose access can still connect via the .15.0/24 address network. the problem lasts sometimes in upwards of a day or two before the pc(s) get access back.
The AH didn’t have this problem until after we upgraded it to 5.3, we installed 5.6 in hopes it would fix the issue, it did not. So we went right to 5.6 on the G, and it loaded the cfg over to it thinking the AH might be going bad. low and behold, same issue on the G. We haven’t added any firewall rules since the 2nd week of the device being in production (back when rOS v4.13 was released) not sure what’s going on either.
Some random troubleshooting questions from the top of my head:
can the affected host ping the router at that time? Can other hosts?
does the router have the right ARP entry for the host on its native network?
does the host have the right ARP entry for the router on its native network?
does the router see traffic from the host in torch or packet captures?
when you run Wireshark or some other packet analyzer on the host, do you see any return traffic at all?
if you’re overloading multiple IPs on the same broadcast domain - is there a pattern to which address space keeps failing when comparing it to the IP space the clients are on?
can the affected host ping the router at that time? Can other hosts?
Yes, internet even works, only thing we lose access to is Winbox
does the router have the right ARP entry for the host on its native network?
Yes, I do see the IP/MAC combo in ARP on the router
does the host have the right ARP entry for the router on its native network?
Checked on the Windows Box, and Yes, I see the proper IP/MAC combo, Checked the Mindriva box, same, see the correct IP/MAC combo
does the router see traffic from the host in torch or packet captures?
See question 1. Yes, it does see packets going to and from the PC-RB-PC etc, however i can not access the WebConfig either on the effected PCs
when you run Wireshark or some other packet analyzer on the host, do you see any return traffic at all?
I’m not very familiar with/never used WireShark, I’m actually looking for a program like I had years ago called SnifferPRO.. but thats another story..
if you’re overloading multiple IPs on the same broadcast domain - is there a pattern to which address space keeps failing when comparing it to the IP space the clients are on?
Not really sure, it seems to be totally random as to which dies and when. we have an old HP ProCurve Managed switch installed between the RB and the clients, and as far as I can tell, its running storm control on the interfaces we have turned up, every few days it says their is a lot of broadcast traffic, but the log entries don’t coincide with when we loose access to it. We’re in the testing phase of moving to a true routed network to get rid of some/all of the broadcast traffic
UPDATE:
It seems if i connect to the RB via MAC, I can then connect over IP sooner.