Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Cannot upload files or do upload tests

    Scheduled Pinned Locked Moved Firewalling
    5 Posts 3 Posters 1.8k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      mustavas
      last edited by

      Hi all,

      I have pfsense behind an asus dsl wifi router running as my internet gateway for all my wifi devices.
      I am having an issue where I Cannot upload any files or conduct any upload tests, but all other traffic seems to work fine.

      My setup is as follows (see attached)

      WAN router (asus).
      Public: 123.x.x.x
      Lan: 192.168.1.1
      DHCP Subnet: 192.168.1.0/24 (pool .2 - .254)
      DHCP Gateway: 192.168.1.2 (pfsense)

      PfSense
      WAN: 192.168.1.2
      LAN: 192.168.1.202

      I only have 1 firewall rule on my LAN interface
      Allow Any/Any

      A few details:

      • The end game is to use PFsense as a VPN endpoint and firewall for wireless devices
      • Web traffic appears to work, but I cannot upload images, files or run an upload speed test. (download test works fine).
      • ASUS wan router is my modem too.
        **- Very small files WILL upload approx up to 50-64kb
      • If I disable packet filtering on pfsense, everything works.**
      • I have tried disabling outbound NAT

      Can any one help me solve this? I dont know what else to try :)
      Thank you!

      Network.png
      Network.png_thumb
      speedtest.PNG
      speedtest.PNG_thumb

      1 Reply Last reply Reply Quote 0
      • I
        ikkuranus
        last edited by

        I'd venture to guess it probably has something to do with having both the wan and lan on the same subnet.
        Also you really should put the asus modem/router into bridge mode and avoid that double nat.

        1 Reply Last reply Reply Quote 0
        • H
          Harvy66
          last edited by

          asymmetric routing. You have your WAN and LAN on the same subnet. The response packets never go through the router and pfSense drop the state after never seeing a reply. The reason it does after 64KiB is that's the TCP send window before the state dies.

          1 Reply Last reply Reply Quote 0
          • M
            mustavas
            last edited by

            @Harvy66:

            asymmetric routing. You have your WAN and LAN on the same subnet. The response packets never go through the router and pfSense drop the state after never seeing a reply. The reason it does after 64KiB is that's the TCP send window before the state dies.

            Thanks for the replies. So this sounds right… Anyway I can avoid this?
            My only concern is if I create a new subnet on the pfsense for the lan interface, I will not be able to pass my wifi traffic to it?

            Do i need a bridge interface between pfsense and the wifi router perhaps?

            1 Reply Last reply Reply Quote 0
            • H
              Harvy66
              last edited by

              You should never have more than one subnet per broadcast domain and each interface should be a different subnet.

              1 Reply Last reply Reply Quote 0
              • First post
                Last post
              Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.