Strange Issues After 2.6 Can't log in to bank, etc

wicked1

I upgraded to 2.6 last night. All appeared fine.

This morning, I couldn't log in to my internal webmail. PureNAT was no longer working. Nat+ does work.
Later I discovered, I cannot log in to an investment website.. It just hangs. It doesn't tell me the site can't be reached or any other errors. (it's TDAmeritrade.. The main site opens, but not the user page.. and the user/pass boxes on the main page never finish loading)

I do have pfblockerng, but disabled it. No change. I don't have snort or any other packet inspection or filter.
I plugged in a different router with an old version of pfsense, and the ameritrade site works. Plug in my newly updated 2.6 router, and it does not.
Can anyone help me figure this out? (I apparently never had an account here, but I have many years experience w/ pfsense)

Thank you.

stephenw10

What did you upgrade from?

You had NAT reflection setup with NAT+Proxy, where were you connecting from?

Unable to reach particular sites like that is usually an MTU issue or a bad subnet assuming it actually can't reach the IPs.

But it could easily also be a DNS issue. I would expect an error that might help though.

However if you have pfBlocker installed that would still be my first suspect. Just disabling it does not necessarily remove block tables etc.

Ultimately run a packet capture when you try to connect and see what's actually failing. Or use the developer tools in your browser to see what connections are failing.

Steve

wicked1

I noticed I was only getting about 1.7Mbps, while I should be getting about 400. Which I have seen in the past, due to NIC issues. I tried disabling all the offloading, and it didn't make a difference.. And this same NIC was fine before 2.6.

I had purenat before. And is what I want to use. But it isn't working.
I upgraded from 2.5.2

My situation is a little odd... I run it in a Hyper-V virtual machine. Intel i350-t4 network card.

I restored my pfsense drive to my backup from a couple nights ago, and everything is running great. Back on 2.5.2. Everything else is the same.

stephenw10

Ah, you might be hitting whatever these guys are:
https://forum.netgate.com/topic/169884/after-upgrade-inter-v-lan-communication-is-very-slow-on-hyper-v-for-others-wan-speed-is-affected/

Are you passing through the NICs?

Still trying to find some commonality there.

Steve

wicked1

@stephenw10
Thanks,
That may be the same issue.

I do have vlans configured, but I am not using them at the moment. My testing is all on the primary lan.
I am using the virtual switch in Hyper-V. My nics do have hardware virtualization enabled.. sr-ivo, I think it is.

stephenw10

Hmm, probably better to report in that thread then whilst we try to pin this down.

Steve