The
bottleneck to the cloud is your T-1. No firewall being set
to 10Mbs/100Mbs/1Gbps will make any difference there. In your situation
10Mbps
is more than enough. I wouldn’t be shocked to see 10Mbps dealing with
WAN
type equipment, precisely because it’s more than enough to fill the
average pipe. *10Mb = Not outrageous at all*
Half
duplex could be an issue with high packet rates. This is
possible even at low bandwidth utilization. If you’re running VoIP,
terminal
emulation or any other type of high packet rate streaming you could see
a lot
of collisions. Half-duplex is more unusual and something I would
change. *HDx
= Not outrageous, but worth fixing/changing*
Is
the firewall capable of full duplex? Perhaps it just failed
to properly auto-negotiate? What type of firewall is it (make/model)?
-Ryan
Hi Wireshark
Folks,
The below query is not Wireshark specific, just a basic networking
topic.
Pls hit delete if you dont care to read more.
I pose this query to this forum just because the collection of talent
here
should vindicate or refute my own sanity.
pls consider this network topology?
a site has a T1 to the cloud. following that T1 into the domain, we
first
encounter the T1 router,
then on to a firewall, and arriving finally at a 10/100 Mbps switch
where its
distributed to internal users.
our access to the cloud has been degraded so we look for reasons why?
we find that the firewall is configured on both input/output sides to
be 10
Mbps, half duplex.
AFAIK, upgrading the firewall interfaces to 100 Mpbs/FDx would increase
the
throughput by 10 times (ideally)
and enable bidirectional traffic (as opposed to limiting to a single
direction
at once).
am i missing something obvious here? is there any reason a 10 Mbps/HDx
link is
better than 100Mbps/FDx ??
tia, jackc...
--
Jack Craig
Software Engineer
831.461.7100 x120
www.extraview.com