A few days ago I started experiencing extremely slow file transfers to and from my local networked clients behind a server/gateway running SME 5.5 along with a breakdown in my Freeswan VPN connection with a client server at a remote office.
I tried pinging the addresses I was trying to transfer files to, as well as eth0 with 1024kb packets to and did not see anything abnormal in the timestamps. Email works fine, http browsing works fine, but VPN and FTP file transfers would crawl or outright stall.
I then removed the VPN connection settings (the only one that was set up) on both servers, along with the local network settings for the remote networks. I did not remove the Freeswan packages installed. FTP file transfers began to behave normally for a few days, but went back to the same conditions this morning. Please note that the problems are occurring only at this location and not at the remote office. The problem happens suddenly, not gradually.
My ISP checked the connections and did not see any degradation in the connections. I also set up a client (Mac OS X w/firewall) outside the SME gateway/firewall, and experienced normal throughput for file transfers. So the problem is most likely with my SME server.
I'm not very experienced in analysing networks, but I'm suspicious that the server at my location has been hacked. I'm I justified in this? How can I tell?
1 Replies
348 Views