1
22.7 Legacy Series / Intermittent high ping only to gateway (opnsense)
« on: December 14, 2022, 06:38:08 am »
Hi folks, I know this probably isn't an opnsense issue but thought there may be someone with ideas reading these forums anyway .
I've been tearing my hair out with a difficult to diagnose network issue which manifests as intermittent high ping to the gateway (which is opnsense), only from one host. This will occur for seemingly random amounts of time, maybe only seconds, or maybe 20+ minutes, a few times every day. Packet captures on that host reveal nothing that seems very interesting, other than a lot of tcp retries/spurious retransmits etc which I suspect are symptoms and not cause. The host is unusable from a network standpoint when this happens (no pages load, etc).
What's odd is that when this happens, this same host can ping any other host on the network without issue, including others on the same switch. The opnsense box can also ping any other host just fine, and they can ping it. Pinging from the opnsense box to the affected host is also slow. Packet captures on the opnsense box reveal that it receives pings and replies immediately (~0.1ms), on the affected host the captures show pings and replies being far apart (10-250ms).
The opnsense box is connected to a zyxel switch, the affected host is connected to a mikrotik switch which is connected to that same zyxel switch. Nothing on either switch seems interesting either, no massive error counts or anything like that.
I'm led to believe the issue lies with the host itself and not the network, but I have no idea what... It's connected with an Asus XG-C100C adapter, I found updated drivers for this and installed them but hasn't changed the problem.
Anyone have any ideas? Things I might try, other things to look for?
I've been tearing my hair out with a difficult to diagnose network issue which manifests as intermittent high ping to the gateway (which is opnsense), only from one host. This will occur for seemingly random amounts of time, maybe only seconds, or maybe 20+ minutes, a few times every day. Packet captures on that host reveal nothing that seems very interesting, other than a lot of tcp retries/spurious retransmits etc which I suspect are symptoms and not cause. The host is unusable from a network standpoint when this happens (no pages load, etc).
What's odd is that when this happens, this same host can ping any other host on the network without issue, including others on the same switch. The opnsense box can also ping any other host just fine, and they can ping it. Pinging from the opnsense box to the affected host is also slow. Packet captures on the opnsense box reveal that it receives pings and replies immediately (~0.1ms), on the affected host the captures show pings and replies being far apart (10-250ms).
The opnsense box is connected to a zyxel switch, the affected host is connected to a mikrotik switch which is connected to that same zyxel switch. Nothing on either switch seems interesting either, no massive error counts or anything like that.
I'm led to believe the issue lies with the host itself and not the network, but I have no idea what... It's connected with an Asus XG-C100C adapter, I found updated drivers for this and installed them but hasn't changed the problem.
Anyone have any ideas? Things I might try, other things to look for?