Cheap broadband router vs. pfsense (playstation 3)

  • I switched to pfsense because neither of the older broadband routers I had on hand would give me full bandwidth on my 60/5 cable connection.  I also intended to do multi-wan with a spare dsl connection.

    What is this $15 router doing (or able to do) that allows my PS3's to run perfectly behind it without a single hiccup, yet pfsense requires a special configuration (static ip lease, AON) ?  Hell I can do video chat at the same time on both PS3's with no problems on the cheap router.

  • pfSense scrambles per default outgoing source ports.
    This provides an additional layer of security.

    Most bad implementations of a network-stack have problems with this.
    (And yes i think the network stack of the PS3 is badly implemented if it cannot handle source ports which are not expected).

    At least on the pfSense you KNOW why it works/doesnt work, while the cheap router hides a lot of ugly stuff from you.

  • OK, so the AON config (used from other posts on the forums) is to use static source ports rather than scrambled?  and the static ip lease is because you only want to enable that for specific devices that need it leaving the rest of the network alone?

  • What about IP fragments?  anyway to enable them?

    I did find the following post:

    i checked the DF and scrub checkboxes on system / advanced but the network test on the ps3 is still complaining about the router not supporting ip fragments.

  • This is extremely common on modern networks as a result of Path MTU Discovery. Most TCP packets on modern networks will have the DF bit set. For example run a tcpdump -v on your network and you'll find that pretty much every TCP packet has the DF bit set.

    The problem is almost certainly something else.

Log in to reply