WAN choking with bridged cable modem
-
Sounds very similar to a known issue with some cable modems. See: http://badmodems.com/
Though I would expect that to affect any OS.How much traffic are you putting across it when that happens? If it's close to the line rate some traffic shaping might help.
Steve
-
When you ran tcpdump, you mentioned seeing many TCP SYN retransmissions. Did you capture on the WAN interface facing the modem or the LAN interface facing your machine? If you captured on the WAN interface, do you see SYN,ACK packets back?
If no, that would support the hypothesis of a modem related issue.
-
root@OPNsense:~ # ping 8.8.8.8
And since it appears your using another router product.. you might want to ask them for help. It might be something in their software.
-
I had similar problem with Shaw and Arris XB6. I would lose all WAN traffic periodically however I could still ping things. I could put exact same pfSense on my ADSL and would work fine. I tried many different configurations of pfSense hardware with no luck.
I got a Technicolor XB6 and Shaw technician came and installed a MoCA filter on my line. Problem is now solved.
Not sure which one fixed the problem though because I got both done at same time. He said MoCA traffic from neighbours can interfere with these modems and make them confused. -
Use http://www.dslreports.com/speedtest to test each connection.
-
@stephenw10 Doesnt seem to be, its Arris TG1692A. I have also tried with a EMTA TC7337 before the Arris and had the same problem.
Not much traffic it seems more related to the number of connections than throughput. -
@nkaminski It was in the WAN interface and didnt see SYN,ACK back. I also thought it was the modem and I have made the ISP replace it but the problem remains. Thing is it works in Linux (ipfire) which is super odd. Perhaps Linux has a workaround implemented for it somehow?
-
@brians I initially thought it could be modem related but what puzzles me is that when connected directly to Linux (laptop or a Linux/ipfire in the same hardware) or Windows (in a laptop, still bridge mode) it works perfectly fine.
Wouldnt that rule out a modem problem?
It seems that FreeBSD has some sort of incompatibility with that modem or perhaps some traffic in the WAN interface confuses FreeBSD PF but not Linux iptables? -
@william-gr my problem also was pfsense only and I could use other router and it would not have issue and work fine. This is similar to you using Linux or computer direct. I think still partly pfsense quirk and it is more sensitive to whatever the underlying issue is, but all i know is after moca filter and changing to the technicolor version it works fine now.
I spent a long time trying to solve this before changing modems and moca filter, but with no success.
-
@brians That actually makes quite a bit of sense. I will try to install one and let you all know how it goes. Thank you!
