SRX

HTTP sessions when running over Juniper MPLS network do not load except for google http sites. MPLS, OSPF, RSVP, BGP, VPLS appear to filter http sessions.

Uploaded 12-15-14 running configs for both the Zeus and EOS SRX550 Juniper Routers and Wireshark captures for http sessions to Yahoo.com and Google.com
Ran wireshark on Laptop. Tried 4 different tests. Two with traffic processed by Juniper MPLS, Two with direct connection to vlan tagged switch. Switch directly connected to cable modem. When Juniper MPLS network is inserted between switch and laptop, http filtering takes place. Remove Juniper MPLS, full connectivity restores on HTTP sessions.

Attachment(s)

SRX550+EOS+-+12-15-14.txt   4 KB 1 version

SRX550+ZEUS+-+12-15-14.txt   7 KB 1 version

Wireshark Results.zip   822 KB 1 version

All other kinds of  traffic is working ? I'm guessing at this point that their is a MTU problem

I am in agreement with MarcTB, this looks like an MTU issue.  MPLS will not fragment packets upon ingress to an LSP.  Your best bet to troubleshoot this is to just do a ping between nodes on either end of the MPLS network:

ping size 1472 do-not-fragment <dest-ip>

If you're unable to ping with 1472 (that's 1500 bytes minus the IP header), then your MTU is too low.  If you control the MPLS transport network, raise your MTU on those transit interfaces to account for your IP MTU, plus VLAN header(s), plus MPLS labels.  I normally set all my physical MTU in my core network to 9100 so there is almost no way I will run into an MTU problem.  All the edge-facing ports are set to the default MTU.

Did you checked the suggestions EVT was giving ? or could you solve the problem in any other way ?