Greetings, I am having an issue downloading content from various services (repo1.maven.org, PiPi, RubyGems, etc…) that all use Fastly CDN as their CDN (confirmed via DNS). Attempting it with multiple OS installs, a large variety of URL’s, and many other things.
What is directly happening is that the server starts randomly sending RST packets during a connection, sometimes at the start, sometimes in the middle of a download, etc… I have a multitude of packet dumps showing this issue:
1 0.000000 172.17.0.116 126.96.36.199 DNS 75 Standard query 0xc1b2 A repo1.maven.org 2 0.000096 172.17.0.116 188.8.131.52 DNS 75 Standard query 0x2376 AAAA repo1.maven.org 3 0.018222 184.108.40.206 172.17.0.116 DNS 297 Standard query response 0xc1b2 CNAME central.maven.org CNAME sonatype.map.fastly.net A 220.127.116.11 4 0.018443 18.104.22.168 172.17.0.116 DNS 206 Standard query response 0x2376 CNAME central.maven.org CNAME sonatype.map.fastly.net 5 0.027585 172.17.0.116 22.214.171.124 TCP 70 59001 > http [SYN] Seq=0 Win=29200 Len=0 MSS=1460 SACK_PERM=1 TSval=406823371 TSecr=0 6 0.056000 126.96.36.199 172.17.0.116 TCP 70 http > 59001 [SYN, ACK] Seq=0 Ack=1 Win=13680 Len=0 MSS=1380 SACK_PERM=1 TSval=2613348758 TSecr=406823371 7 0.056034 172.17.0.116 188.8.131.52 TCP 66 59001 > http [ACK] Seq=1 Ack=1 Win=29200 Len=0 TSval=406823378 TSecr=2613348758 8 0.056088 172.17.0.116 184.108.40.206 HTTP 220 GET /maven2/org/scala-lang/scala-library-all/2.11.5/scala-library-all-2.11.5.pom HTTP/1.1 9 0.070357 220.127.116.11 172.17.0.116 TCP 54 http > 59001 [RST] Seq=1 Win=0 Len=0 10 0.070384 18.104.22.168 172.17.0.116 TCP 54 http > 59001 [RST] Seq=1 Win=0 Len=0 11 1.269781 22.214.171.124 172.17.0.116 TCP 70 [TCP Retransmission] http > 59001 [SYN, ACK] Seq=0 Ack=1 Win=13680 Len=0 MSS=1380 SACK_PERM=1 TSval=2613349062 TSecr=406823371 12 1.269812 172.17.0.116 126.96.36.199 TCP 54 59001 > http [RST] Seq=1 Win=0 Len=0
I can supply the full pcap file if requested as well, but that should make it fairly obvious above.
Needless to say, this issue is preventing me from setting up a discourse forum, update my java servers, amongst a whole host of other issues. This has been occuring for many weeks now and it happens with no other service that I have tested to date. Is this an issue with Fastly CDN, or is it an issue with a multitude of different servers with different IPs in multiple locations that I have tested that run a multitude of different OS’s, or…? How can this get fixed? How can it be prevented in the future?
Please sign in to leave a comment.