SRX Services Gateway
SRX Services Gateway

SRX-240H with a ADSL interface

‎12-30-2009 07:20 AM

Hello all,


I've just configured my first SRX-240H with an ADSL interface.

Everything works, my pppoe session becomes active and I get an ip address, however:

-> When downloading a file, the connection stops for 2 seconds, and then again resumes for about 5 a 10 seconds. This pattern is always repeating when downloading a file from the internet.

Where should a look for this problem ? The adsl interface is synced with normal speed settings, and the line didn't have this problem with another modem (for example Zyxel ADSL2+ modem)


My configuration:


interfaces {
    ge-0/0/0 {
        unit 0 {
            family inet {
                address 10.2.0.200/24;
            }
        }
    }
    at-1/0/0 {
        description Adsl;
        encapsulation ethernet-over-atm;
        atm-options {
            vpi 8;
        }
        dsl-options {
            operating-mode auto;
        }
        unit 0 {
            description Evonet;
            encapsulation ppp-over-ether-over-atm-llc;
            vci 8.35;
        }
    }
    pp0 {
        unit 0 {
            ppp-options {
                chap {
                    access-profile jweb-pp0;
                    local-name "user@XS4ALL";
                    passive;
                }
            }
            pppoe-options {
                underlying-interface at-1/0/0.0;
                auto-reconnect 30;
                client;
            }
            family inet {
                negotiate-address;
            }
        }
    }
}
routing-options {
    static {
        route 0.0.0.0/0 next-hop pp0.0;
    }
}
security {
    nat {
        source {
            address-persistent;
            rule-set interface-nat {
                from zone trust;
                to zone untrust;
                rule rule1 {
                    match {
                        source-address 0.0.0.0/0;
                        destination-address 0.0.0.0/0;
                    }
                    then {
                        source-nat {
                            interface;
                        }
                    }
                }
            }
        }
    }
    screen {
        ids-option untrust-screen {
            icmp {
                ping-death;
            }
            ip {
                source-route-option;
                tear-drop;
            }
            tcp {
                syn-flood {
                    alarm-threshold 1024;
                    attack-threshold 200;
                    source-threshold 1024;
                    destination-threshold 2048;
                    queue-size 2000; ## Warning: 'queue-size' is deprecated
                    timeout 20;
                }
                land;
            }
        }
    }
    zones {
        security-zone trust {
            tcp-rst;
            interfaces {
                ge-0/0/0.0 {
                    host-inbound-traffic {
                        system-services {
                            http;
                            https;
                            ssh;
                            telnet;
                            dhcp;
                        }
                    }
                }
            }
        }
        security-zone untrust {
            screen untrust-screen;
            interfaces {
                pp0.0;
            }
        }
    }
    policies {
        from-zone trust to-zone trust {
            policy default-permit {
match {
                    source-address any;
                    destination-address any;
                    application any;
                }
                then {
                    permit;
                }
            }
        }
        from-zone trust to-zone untrust {
            policy permit-all {
                match {
                    source-address any;
                    destination-address any;
                    application any;
                }
                then {
                    permit;
                }
            }
        }
        from-zone untrust to-zone trust {
            policy default-deny {
                match {
                    source-address any;
                    destination-address any;
                    application any;
                }
                then {
                    deny;
                }
            }
        }
    }
}
access {
    profile jweb-pp0 {
        authentication-order password;
        client vil-rb01.mpl chap-secret "$9$Azosp0IylMWx-9A0IhceKg4aUqm"; ## SECRET-DATA
    }
}

1 REPLY 1
SRX Services Gateway

Re: SRX-240H with a ADSL interface

[ Edited ]
‎12-30-2009 07:22 AM

My ADSL status:


root@SRX240> show interfaces at-1/0/0 extensive
Physical interface: at-1/0/0, Enabled, Physical link is Up
  Interface index: 154, SNMP ifIndex: 158, Generation: 157
  Description: Adsl
  Link-level type: Ethernet-over-ATM, MTU: 1496, Clocking: Internal, ADSL mode, Speed: ADSL
  Speed: 512kbps, Loopback: None
  Device flags   : Present Running
  Link flags     : None
  CoS queues     : 8 supported, 8 maximum usable queues
  Hold-times     : Up 0 ms, Down 0 ms
  Current address: 00:26:88:02:5c:99
  Last flapped   : 2009-12-30 15:58:00 UTC (00:19:02 ago)
  Statistics last cleared: Never
  Traffic statistics:
   Input  bytes  :                  178                    0 bps
   Output bytes  :                 6671                  184 bps
   Input  packets:                    2                    0 pps
   Output packets:                  127                    0 pps
  Input errors:
    Errors: 0, Drops: 0, Invalid VCs: 0, Framing errors: 0, Policed discards: 0, L3 incompletes: 0, L2 channel errors: 0, L2 mismatch timeouts: 0, Resource errors: 0
  Output errors:
    Carrier transitions: 1, Errors: 0, Drops: 0, Aged packets: 0, MTU errors: 0, Resource errors: 0
  Egress queues: 8 supported, 4 in use
  Queue counters:       Queued packets  Transmitted packets      Dropped packets
    0 best-effort                75471                75440                   31
    1 expedited-fo                   0                    0                    0
    2 assured-forw                   0                    0                    0
    3 network-cont                 121                  121                    0
  ADSL  alarms   : None
  ADSL  defects  : None
  ADSL media:            Seconds        Count  State
    LOF                          0            0  OK
    LOS                          0            0  OK
    LOM                          0            0  OK
    LOP                          0            0  OK
    LOCDI                        0            0  OK
    LOCDNI                       0            0  OK
  ADSL status:
    Modem status  : Showtime (Itu-dmt)
    DSL mode      :     Auto    Annex A
    Last fail code: None
    Subfunction   : 0x00
    Seconds in showtime : 1144
  ADSL Chipset Information:               ATU-R                  ATU-C
    Vendor Country :                       0xb5                   0xb5
    Vendor ID      :                       TSTC                   BDCM
    Vendor Specific:                     0x0000                 0x6291
  ADSL Statistics:                        ATU-R                  ATU-C
    Attenuation (dB)         :             16.0                   34.0
    Capacity used (%)        :                0                      0
    Noise margin (dB)        :             26.0                    7.0
    Output power (dBm)       :              0.0                    0.0

                                  Interleave       Fast  Interleave       Fast
    Bit rate (kbps)   :                 8160          0         512          0
    CRC               :                   13          0           1          0
    FEC               :                    0          0           0          0
    HEC               :                    0          0           0          0
    Received cells    :              3763266          0
    Transmitted cells :               166899          0
  ATM status:
    HCS state:     Hunt
    LOC      :       OK
  ATM Statistics:
    Uncorrectable HCS errors: 0, Correctable HCS errors: 0, Tx cell FIFO overruns: 0, Rx cell FIFO overruns: 0, Rx cell FIFO underruns: 0, Input cell count: 0, Output cell count: 0, Output idle cell count: 0, Output VC queue drops: 0,
    Input no buffers: 0, Input length errors: 0, Input timeouts: 0, Input invalid VCs: 0, Input bad CRCs: 0, Input OAM cell no buffers: 0
  Packet Forwarding Engine configuration:
    Destination slot: 1
  CoS information:
    Direction : Output
    CoS transmit queue               Bandwidth               Buffer Priority   Limit
                              %            bps     %           usec
    0 best-effort            95         486400    95              0      low    none
    3 network-control         5          25600     5              0      low    none
Please advise Smiley Happy