Burble
06-10-2010, 09:23
In December 2009 my company was acquired and on Monday this week we went live on the ERP from the new parent company. They're using JDEdwards Enterprise One running on a Citrix farm.
At the moment we're running 2 separate WAN's. Theirs is MPLS, ours is IPSec VPN (with EIGRP, GRE and so on). I setup an interconnect through their office in Eindhoven back in January so we have full routing from all of their sites to all of ours.
The interconnect itself is just an extension of my IPSec VPN that distributes routes to their network back to us over EIGRP and advertises itself as a valid route to our networks over BGP to their WAN.
Now the problem. We're seeing frequent disconnections to the Citrix farm from the IPSec WAN clients. The Citrix farm is on an MPLS node. Latency, jitter, throughput and so on look fine to me so I'm looking to Citrix.
Does anyone know what sort of size packets Citrix chucks out? Because of the overhead of IPSec we're running a 1400 byte MTU over the IPSec WAN so I'm wondering if the disconnections and freezing are down to packet fragmentation?
There's nobody in the other company that even knows what MTU stands for and they're refusing to accept that their Citrix farm is anything less than 100% perfect so I'm having to fault find this pretty much blind.
Other traffic over the interconnect isn't having a problem, we've got a pretty much continual flow of SMTP and print jobs.
I should say that we're part way through getting a new MPLS WAN installed but until that is done we're kinda stuck with this and the 2 offices that are suffering most are having delays on the new tails because Deutche Telekom seem to have nobody available for 6 weeks to pull some fibre in. I expect we're stuck with this situation for another 2 months or so, so I'm keen to find a way around it.
Ideas are appreciated!
At the moment we're running 2 separate WAN's. Theirs is MPLS, ours is IPSec VPN (with EIGRP, GRE and so on). I setup an interconnect through their office in Eindhoven back in January so we have full routing from all of their sites to all of ours.
The interconnect itself is just an extension of my IPSec VPN that distributes routes to their network back to us over EIGRP and advertises itself as a valid route to our networks over BGP to their WAN.
Now the problem. We're seeing frequent disconnections to the Citrix farm from the IPSec WAN clients. The Citrix farm is on an MPLS node. Latency, jitter, throughput and so on look fine to me so I'm looking to Citrix.
Does anyone know what sort of size packets Citrix chucks out? Because of the overhead of IPSec we're running a 1400 byte MTU over the IPSec WAN so I'm wondering if the disconnections and freezing are down to packet fragmentation?
There's nobody in the other company that even knows what MTU stands for and they're refusing to accept that their Citrix farm is anything less than 100% perfect so I'm having to fault find this pretty much blind.
Other traffic over the interconnect isn't having a problem, we've got a pretty much continual flow of SMTP and print jobs.
I should say that we're part way through getting a new MPLS WAN installed but until that is done we're kinda stuck with this and the 2 offices that are suffering most are having delays on the new tails because Deutche Telekom seem to have nobody available for 6 weeks to pull some fibre in. I expect we're stuck with this situation for another 2 months or so, so I'm keen to find a way around it.
Ideas are appreciated!