<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
<HTML>
<HEAD>
<META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=us-ascii">
<META NAME="Generator" CONTENT="MS Exchange Server version 6.0.6603.0">
<TITLE>Strange issue involving sampling</TITLE>
</HEAD>
<BODY>
<!-- Converted from text/rtf format -->
<P><FONT SIZE=2 FACE="Arial">First, apologies if this isn't the right place, but I was hoping to hit a lot of networking folks in one shot and this seemed like the likely venue.</FONT></P>
<P><FONT SIZE=2 FACE="Arial">I have this problem where a customer of mine has issues getting to secure websites (https sites like Charles Schwab's). It doesn't happen all the time, maybe once a month or so. We went to Juniper with the issue (we're using M-20s as our edge routers) and they couldn't figure it out, but one of our engineers found that the config pasted below (with proprietary info removed) fixed the problem. The only problem is that even with this config, we have to restart the sampling daemon every month or so because the problem will come back. Understandably, the customer would prefer to have a more permanent solution.</FONT></P>
<P><FONT SIZE=2 FACE="Arial">Anyone have an idea why this one customer on my entire network would have this issue? Supposedly the customer had Cisco come out and look at their network and they couldn't find any reason for it either.</FONT></P>
<P><FONT SIZE=2 FACE="Arial">routerx# show | compare rollback 0 </FONT>
<BR><FONT SIZE=2 FACE="Arial">[edit]</FONT>
<BR><FONT SIZE=2 FACE="Arial">- forwarding-options {</FONT>
<BR><FONT SIZE=2 FACE="Arial">- sampling {</FONT>
<BR><FONT SIZE=2 FACE="Arial">- input {</FONT>
<BR><FONT SIZE=2 FACE="Arial">- family inet {</FONT>
<BR><FONT SIZE=2 FACE="Arial">- rate 1;</FONT>
<BR><FONT SIZE=2 FACE="Arial">- }</FONT>
<BR><FONT SIZE=2 FACE="Arial">- }</FONT>
<BR><FONT SIZE=2 FACE="Arial">- output {</FONT>
<BR><FONT SIZE=2 FACE="Arial">- file filename customer.sample;</FONT>
<BR><FONT SIZE=2 FACE="Arial">- }</FONT>
<BR><FONT SIZE=2 FACE="Arial">- }</FONT>
<BR><FONT SIZE=2 FACE="Arial">- }</FONT>
<BR><FONT SIZE=2 FACE="Arial">[edit firewall]</FONT>
<BR><FONT SIZE=2 FACE="Arial">- filter customer {</FONT>
<BR><FONT SIZE=2 FACE="Arial">- term 1 {</FONT>
<BR><FONT SIZE=2 FACE="Arial">- then {</FONT>
<BR><FONT SIZE=2 FACE="Arial">- sample;</FONT>
<BR><FONT SIZE=2 FACE="Arial">- accept;</FONT>
<BR><FONT SIZE=2 FACE="Arial">- }</FONT>
<BR><FONT SIZE=2 FACE="Arial">- }</FONT>
<BR><FONT SIZE=2 FACE="Arial">- term default {</FONT>
<BR><FONT SIZE=2 FACE="Arial">- then accept;</FONT>
<BR><FONT SIZE=2 FACE="Arial">- } </FONT>
<BR><FONT SIZE=2 FACE="Arial">- }</FONT>
</P>
<P><FONT SIZE=2 FACE="Arial">[edit interfaces ls-2/3/0 unit 3]</FONT>
<BR><FONT SIZE=2 FACE="Arial">routerx# show </FONT>
<BR><FONT SIZE=2 FACE="Arial">description "Customer X";</FONT>
<BR><FONT SIZE=2 FACE="Arial">encapsulation multilink-ppp;</FONT>
<BR><FONT SIZE=2 FACE="Arial">ml-pic-compatible;</FONT>
<BR><FONT SIZE=2 FACE="Arial">family inet {</FONT>
<BR><FONT SIZE=2 FACE="Arial"> no-redirects;</FONT>
<BR><FONT SIZE=2 FACE="Arial"> filter {</FONT>
<BR><FONT SIZE=2 FACE="Arial"> input customer;</FONT>
<BR><FONT SIZE=2 FACE="Arial"> output customer;</FONT>
<BR><FONT SIZE=2 FACE="Arial"> }</FONT>
<BR><FONT SIZE=2 FACE="Arial"> address x.x.x.x/30;</FONT>
<BR><FONT SIZE=2 FACE="Arial">}</FONT>
</P>
<P><FONT SIZE=2 FACE="Arial">Diane Turley</FONT>
<BR><FONT SIZE=2 FACE="Arial">Sr. Network Engineer</FONT>
<BR><FONT SIZE=2 FACE="Arial">Xspedius Communications Co.</FONT>
<BR><FONT SIZE=2 FACE="Arial">636-625-7178</FONT>
</P>
</BODY>
</HTML>