I can’t even connect to you from any IP in my range. No error just can’t connect at all. I’m also unable to do a traceroute or ping to you, fails one hop before.
Pinging ca80a1adb12a4fbdac5ffcbc944e9a61.pacloudflare.com [172.65.32.248] with 1500 bytes of data:
Packet needs to be fragmented but DF set.
Packet needs to be fragmented but DF set.
Packet needs to be fragmented but DF set.
Packet needs to be fragmented but DF set.
Ping statistics for 172.65.32.248:
Packets: Sent = 4, Received = 0, Lost = 4 (100% loss),
Pinging ca80a1adb12a4fbdac5ffcbc944e9a61.pacloudflare.com [172.65.32.248] with 1500 bytes of data:
Packet needs to be fragmented but DF set.
Packet needs to be fragmented but DF set.
Packet needs to be fragmented but DF set.
Packet needs to be fragmented but DF set.
Ping statistics for 172.65.32.248:
Packets: Sent = 4, Received = 0, Lost = 4 (100% loss),
Pinging ca80a1adb12a4fbdac5ffcbc944e9a61.pacloudflare.com [172.65.32.248] with 1300 bytes of data:
Reply from 172.65.32.248: bytes=1300 time=17ms TTL=54
Reply from 172.65.32.248: bytes=1300 time=17ms TTL=54
Reply from 172.65.32.248: bytes=1300 time=18ms TTL=54
Reply from 172.65.32.248: bytes=1300 time=17ms TTL=54
Ping statistics for 172.65.32.248:
Packets: Sent = 4, Received = 4, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 17ms, Maximum = 18ms, Average = 17ms
Pinging ca80a1adb12a4fbdac5ffcbc944e9a61.pacloudflare.com [172.65.32.248] with 1100 bytes of data:
Reply from 172.65.32.248: bytes=1100 time=17ms TTL=54
Reply from 172.65.32.248: bytes=1100 time=17ms TTL=54
Reply from 172.65.32.248: bytes=1100 time=17ms TTL=54
Reply from 172.65.32.248: bytes=1100 time=18ms TTL=54
Ping statistics for 172.65.32.248:
Packets: Sent = 4, Received = 4, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 17ms, Maximum = 18ms, Average = 17ms
Ok, going to keep troubleshooting on my end. If anyone things of anything else please let me know. I will post updates in case this helps anyone else in the future.
I'm curious and not such a network person: why would a MTU of 1100 bytes be better than 1300 bytes? Wouldn't a MTU of 1100 bytes result in more fragmentation, which I thought isn't a good thing?
So after combing through configs of firewalls, switches and routers I found that at some point 172.65.0.0/16 ended up on an acl for bad traffic we block. I’ve removed it and things are fine now. Sorry for wasting everyone’s time. Or rather double check your access lists!