Cannot load app on phone after period of uptime.
-
Hello,
I have 2 different installs of PFSENSE (2.5.2 and 2.6.0) where the following problem happens.
After a period of time I cannot connect to a phone app. It will start loading, then stick about halfway through then give a load error.
These are on stock installs of 2.5.2 and 2.6.0 (no additional config options outside of basic installation).
I've looked at status->system logs->firewall and nothing looks out of the ordinary.
Weird things I've seen debugging this so far:
-
When app stops loading, I've noticed in the packet captures, an ARP request (from the phone) for an invalid IP address on my network.
-
I can get everything back "working" - meaning the app will load up if I toggle WAN or LAN bogon options. <- this is the wacky part.
-
Once I toggle bogon options, the ARP request is now valid... sometimes it pops up asking for the address of the pfsense box, but nothing invalid.
I've seen this happen on multiple apps on the phone including Flightradar24, Mr. AutoFire, Diablo Immortal, etc.
Lastly, I found if I reboot the box, everything works again - no loading issues. But if I wait around 12-24 hours, the apps will no longer load until I either reboot, or toggle bogon options...
Any help on debugging would be awesome.
Thanks!
genobpgh
-
-
What are the failing ARP requests you see?
If you just re-save the interfaces without changing anything does it come back?
Steve
-
When I was checking out the packet dump for the phone (192.168.1.115) - when things are "failing" it shows a request from the phone MAC address "WHO IS 192.168.1.5 TELL 192.168.1.115" <- I don't have the exact packet in front of me (but that's the gist). The 192.168.1.5 ip doesn't exist anywhere on the network (nor is in the dhcp lease list).
When it works you see "WHO IS 192.168.1.1 TELL 192.168.1.115".
192.168.1.1 is the pfsense box.This above may be a red herring, but it was something I noticed that was different when it is working, and not working.
I will assume that if you "save" the interface it will fix it. In my case I was checking BOGON (both options), SAVING, then it would work. Then when it failed again, I would uncheck the BOGON (both options) SAVE and it would go back to working.
Thanks!!!
genobpgh
-
Yes, that's probably unrelated. If you saw ARPing for 192.168.1.1 and that failed it would be problem. Or if it was ARPing for something that doesn't exist and that was replying.
Does the phone lose connectivity completely or just those selected apps?
-
@stephenw10
It seems like it's just those selected apps. If I bypass the pfsense box, everything loads fine. It's really weird. I'm going to keep digging.It's like when you hit SAVE, something clears and it starts working.
-
Could be stale states somehow. Try clearing the states if you haven't already.
When you bypass pfSense and that allows it to connect what exactly are you doing? You have a wifi network that bypasses it?
Do you have IPv6 on your network?
Steve