• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

Cannot upload files or do upload tests

Scheduled Pinned Locked Moved Firewalling
5 Posts 3 Posters 1.8k Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • M
    mustavas
    last edited by May 13, 2017, 8:01 AM

    Hi all,

    I have pfsense behind an asus dsl wifi router running as my internet gateway for all my wifi devices.
    I am having an issue where I Cannot upload any files or conduct any upload tests, but all other traffic seems to work fine.

    My setup is as follows (see attached)

    WAN router (asus).
    Public: 123.x.x.x
    Lan: 192.168.1.1
    DHCP Subnet: 192.168.1.0/24 (pool .2 - .254)
    DHCP Gateway: 192.168.1.2 (pfsense)

    PfSense
    WAN: 192.168.1.2
    LAN: 192.168.1.202

    I only have 1 firewall rule on my LAN interface
    Allow Any/Any

    A few details:

    • The end game is to use PFsense as a VPN endpoint and firewall for wireless devices
    • Web traffic appears to work, but I cannot upload images, files or run an upload speed test. (download test works fine).
    • ASUS wan router is my modem too.
      **- Very small files WILL upload approx up to 50-64kb
    • If I disable packet filtering on pfsense, everything works.**
    • I have tried disabling outbound NAT

    Can any one help me solve this? I dont know what else to try :)
    Thank you!

    Network.png
    Network.png_thumb
    speedtest.PNG
    speedtest.PNG_thumb

    1 Reply Last reply Reply Quote 0
    • I
      ikkuranus
      last edited by May 13, 2017, 2:09 PM

      I'd venture to guess it probably has something to do with having both the wan and lan on the same subnet.
      Also you really should put the asus modem/router into bridge mode and avoid that double nat.

      1 Reply Last reply Reply Quote 0
      • H
        Harvy66
        last edited by May 14, 2017, 3:45 AM

        asymmetric routing. You have your WAN and LAN on the same subnet. The response packets never go through the router and pfSense drop the state after never seeing a reply. The reason it does after 64KiB is that's the TCP send window before the state dies.

        1 Reply Last reply Reply Quote 0
        • M
          mustavas
          last edited by May 14, 2017, 4:57 AM

          @Harvy66:

          asymmetric routing. You have your WAN and LAN on the same subnet. The response packets never go through the router and pfSense drop the state after never seeing a reply. The reason it does after 64KiB is that's the TCP send window before the state dies.

          Thanks for the replies. So this sounds right… Anyway I can avoid this?
          My only concern is if I create a new subnet on the pfsense for the lan interface, I will not be able to pass my wifi traffic to it?

          Do i need a bridge interface between pfsense and the wifi router perhaps?

          1 Reply Last reply Reply Quote 0
          • H
            Harvy66
            last edited by May 14, 2017, 6:16 PM

            You should never have more than one subnet per broadcast domain and each interface should be a different subnet.

            1 Reply Last reply Reply Quote 0
            5 out of 5
            • First post
              5/5
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
              This community forum collects and processes your personal information.
              consent.not_received