Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Android apps thru pfsense router hang (session/state issue?)

    Scheduled Pinned Locked Moved General pfSense Questions
    5 Posts 2 Posters 212 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • G
      gambit100
      last edited by stephenw10

      A few (but not all) android apps hang on start or refresh (i.e, Strava, Kobo, and Libby hang). After many seconds to minutes, they start working. I don't believe it's a firewall issues since I can reach the web sites via a browser with no issue. I'm wondering if it's an issue with the connection session/state and have tried to diagnose the issue but since I'm not an expert, I'm not sure if this is the correct avenue to research. Also, it seems odd that Strava is sending multiple connections using different ports (I believe this creates separate sessions) at the same time so possible a DNS issue?

      I would appreciate some advice on how to figure this out. Below are the steps I've take so far.

      1. no entries show up in the firewall logs or systems logs that seem relevant.
      2. all messages on the LAN appear to go thru the WAN successfully.
      3. If I kill Wifi and use cellular, the apps start working. Likewise, If I establish a VPN, the apps also start working.
      4. Before refreshing Stava, the State stable for Stava connections (18.165.0.0/16) looks like this for the local client 192.168.1.6:
        *States before Strava Refresh
        LAN tcp 192.168.1.6:39668 -> 18.165.53.35:443 TIME_WAIT:TIME_WAIT 8 / 6 1005 B / 739 B
        LAN tcp 192.168.1.6:39688 -> 18.165.31.54:443 TIME_WAIT:TIME_WAIT 14 / 12 1 KiB / 8 KiB
        LAN tcp 192.168.1.6:43526 -> 18.165.31.82:443 TIME_WAIT:TIME_WAIT 14 / 12 1 KiB / 8 KiB
        LAN tcp 192.168.1.6:39660 -> 18.165.31.54:443 TIME_WAIT:TIME_WAIT 14 / 12 1 KiB / 8 KiB
        LAN tcp 192.168.1.6:39676 -> 18.165.31.54:443 TIME_WAIT:TIME_WAIT 14 / 12 1 KiB / 8 KiB
        LAN tcp 192.168.1.6:39696 -> 18.165.31.54:443 ESTABLISHED:ESTABLISHED 52 / 76 4 KiB / 75 KiB
        LAN tcp 192.168.1.6:53820 -> 18.165.53.35:443 ESTABLISHED:ESTABLISHED 11 / 9 3 KiB / 6 KiB

      After refreshing Strava, the state table looks like this:
      *States immediately after Strava Refresh
      LAN tcp 192.168.1.6:39696 -> 18.165.31.54:443 TIME_WAIT:TIME_WAIT 53 / 76 4 KiB / 75 KiB
      LAN tcp 192.168.1.6:53820 -> 18.165.53.35:443 TIME_WAIT:TIME_WAIT 12 / 9 3 KiB / 6 KiB

      After Strava successfully refreshes, the state table looks like this:
      *States after Strava finally completes refresh
      LAN tcp 192.168.1.6:37008 -> 18.165.53.35:443 TIME_WAIT:TIME_WAIT 8 / 6 1005 B / 739 B
      LAN tcp 192.168.1.6:59684 -> 18.165.31.39:443 TIME_WAIT:TIME_WAIT 12 / 12 1 KiB / 8 KiB
      LAN tcp 192.168.1.6:59696 -> 18.165.31.39:443 TIME_WAIT:TIME_WAIT 12 / 12 1 KiB / 8 KiB
      LAN tcp 192.168.1.6:59702 -> 18.165.31.39:443 TIME_WAIT:TIME_WAIT 12 / 12 1 KiB / 8 KiB
      LAN tcp 192.168.1.6:45050 -> 18.165.31.41:443 ESTABLISHED:ESTABLISHED 52 / 81 4 KiB / 81 KiB
      LAN tcp 192.168.1.6:59716 -> 18.165.31.39:443 TIME_WAIT:TIME_WAIT 12 / 12 1 KiB / 8 KiB
      LAN tcp 192.168.1.6:59794 -> 18.165.48.150:443 ESTABLISHED:ESTABLISHED 25 / 38 2 KiB / 43 KiB
      LAN tcp 192.168.1.6:35760 -> 18.165.53.35:443 ESTABLISHED:ESTABLISHED 10 / 9 3 KiB / 6 KiB

      The capture log on the LAN is as follows with the successful refresh starting at 12:30:19:

      12:29:49.737789 IP 192.168.1.6.37008 > 18.165.53.35.443: tcp 0
12:29:49.752561 IP 18.165.53.35.443 > 192.168.1.6.37008: tcp 0
12:29:49.759565 IP 192.168.1.6.37008 > 18.165.53.35.443: tcp 0
12:29:49.767510 IP 192.168.1.6.37008 > 18.165.53.35.443: tcp 517
12:29:49.782758 IP 18.165.53.35.443 > 192.168.1.6.37008: tcp 0
12:29:49.783083 IP 18.165.53.35.443 > 192.168.1.6.37008: tcp 240
12:29:49.790228 IP 192.168.1.6.37008 > 18.165.53.35.443: tcp 0
12:29:49.792657 IP 192.168.1.6.37008 > 18.165.53.35.443: tcp 64
12:29:49.794990 IP 192.168.1.6.37008 > 18.165.53.35.443: tcp 24
12:29:49.806677 IP 18.165.53.35.443 > 192.168.1.6.37008: tcp 0
12:29:49.806786 IP 18.165.53.35.443 > 192.168.1.6.37008: tcp 179
12:29:49.810627 IP 18.165.53.35.443 > 192.168.1.6.37008: tcp 0
12:29:49.813140 IP 192.168.1.6.37008 > 18.165.53.35.443: tcp 0
12:29:49.817345 IP 192.168.1.6.37008 > 18.165.53.35.443: tcp 0
12:30:09.543296 IP 192.168.1.6.59696 > 18.165.31.39.443: tcp 0
12:30:09.543296 IP 192.168.1.6.59684 > 18.165.31.39.443: tcp 0
12:30:09.543298 IP 192.168.1.6.59702 > 18.165.31.39.443: tcp 0
12:30:09.543347 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
12:30:09.543643 IP 192.168.1.6.59716 > 18.165.31.39.443: tcp 0
12:30:09.558714 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 0
12:30:09.558718 IP 18.165.31.39.443 > 192.168.1.6.59696: tcp 0
12:30:09.558719 IP 18.165.31.39.443 > 192.168.1.6.59684: tcp 0
12:30:09.559307 IP 18.165.31.39.443 > 192.168.1.6.59702: tcp 0
12:30:09.559310 IP 18.165.31.39.443 > 192.168.1.6.59716: tcp 0
12:30:09.572630 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
12:30:09.572630 IP 192.168.1.6.59696 > 18.165.31.39.443: tcp 0
12:30:09.572631 IP 192.168.1.6.59702 > 18.165.31.39.443: tcp 0
12:30:09.572634 IP 192.168.1.6.59684 > 18.165.31.39.443: tcp 0
12:30:09.572711 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 517
12:30:09.572713 IP 192.168.1.6.59716 > 18.165.31.39.443: tcp 0
12:30:09.572714 IP 192.168.1.6.59702 > 18.165.31.39.443: tcp 517
12:30:09.572970 IP 192.168.1.6.59696 > 18.165.31.39.443: tcp 517
12:30:09.575826 IP 192.168.1.6.59716 > 18.165.31.39.443: tcp 517
12:30:09.576172 IP 192.168.1.6.59684 > 18.165.31.39.443: tcp 517
12:30:09.587425 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 0
12:30:09.587428 IP 18.165.31.39.443 > 192.168.1.6.59702: tcp 0
12:30:09.587430 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 234
12:30:09.587853 IP 18.165.31.39.443 > 192.168.1.6.59702: tcp 1428
12:30:09.587855 IP 18.165.31.39.443 > 192.168.1.6.59702: tcp 1428
12:30:09.588096 IP 18.165.31.39.443 > 192.168.1.6.59702: tcp 1428
12:30:09.588099 IP 18.165.31.39.443 > 192.168.1.6.59702: tcp 1428
12:30:09.588591 IP 18.165.31.39.443 > 192.168.1.6.59702: tcp 1428
12:30:09.590961 IP 18.165.31.39.443 > 192.168.1.6.59696: tcp 0
12:30:09.591328 IP 18.165.31.39.443 > 192.168.1.6.59716: tcp 0
12:30:09.591331 IP 18.165.31.39.443 > 192.168.1.6.59702: tcp 638
12:30:09.591361 IP 18.165.31.39.443 > 192.168.1.6.59684: tcp 0
12:30:09.591371 IP 18.165.31.39.443 > 192.168.1.6.59696: tcp 1428
12:30:09.591417 IP 18.165.31.39.443 > 192.168.1.6.59696: tcp 1428
12:30:09.591419 IP 18.165.31.39.443 > 192.168.1.6.59696: tcp 1428
12:30:09.591655 IP 18.165.31.39.443 > 192.168.1.6.59716: tcp 1428
12:30:09.591658 IP 18.165.31.39.443 > 192.168.1.6.59716: tcp 1428
12:30:09.591661 IP 18.165.31.39.443 > 192.168.1.6.59716: tcp 1428
12:30:09.591666 IP 18.165.31.39.443 > 192.168.1.6.59716: tcp 1428
12:30:09.591666 IP 18.165.31.39.443 > 192.168.1.6.59696: tcp 1428
12:30:09.591671 IP 18.165.31.39.443 > 192.168.1.6.59716: tcp 1428
12:30:09.591671 IP 18.165.31.39.443 > 192.168.1.6.59696: tcp 1428
12:30:09.591675 IP 18.165.31.39.443 > 192.168.1.6.59684: tcp 1428
12:30:09.591679 IP 18.165.31.39.443 > 192.168.1.6.59684: tcp 1428
12:30:09.591682 IP 18.165.31.39.443 > 192.168.1.6.59684: tcp 1428
12:30:09.591685 IP 18.165.31.39.443 > 192.168.1.6.59684: tcp 1428
12:30:09.592302 IP 18.165.31.39.443 > 192.168.1.6.59684: tcp 1428
12:30:09.593191 IP 18.165.31.39.443 > 192.168.1.6.59716: tcp 638
12:30:09.593192 IP 18.165.31.39.443 > 192.168.1.6.59696: tcp 638
12:30:09.593195 IP 18.165.31.39.443 > 192.168.1.6.59684: tcp 638
12:30:09.596206 IP 192.168.1.6.59702 > 18.165.31.39.443: tcp 0
12:30:09.596206 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
12:30:09.596616 IP 192.168.1.6.59702 > 18.165.31.39.443: tcp 0
12:30:09.597637 IP 192.168.1.6.59702 > 18.165.31.39.443: tcp 0
12:30:09.599012 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 64
12:30:09.600005 IP 192.168.1.6.59702 > 18.165.31.39.443: tcp 0
12:30:09.601645 IP 192.168.1.6.59696 > 18.165.31.39.443: tcp 0
12:30:09.602655 IP 192.168.1.6.59716 > 18.165.31.39.443: tcp 0
12:30:09.603661 IP 192.168.1.6.59696 > 18.165.31.39.443: tcp 0
12:30:09.603906 IP 192.168.1.6.59716 > 18.165.31.39.443: tcp 0
12:30:09.605635 IP 192.168.1.6.59684 > 18.165.31.39.443: tcp 0
12:30:09.606107 IP 192.168.1.6.59684 > 18.165.31.39.443: tcp 0
12:30:09.606833 IP 192.168.1.6.59716 > 18.165.31.39.443: tcp 0
12:30:09.607192 IP 192.168.1.6.59716 > 18.165.31.39.443: tcp 0
12:30:09.608034 IP 192.168.1.6.59696 > 18.165.31.39.443: tcp 0
12:30:09.608899 IP 192.168.1.6.59696 > 18.165.31.39.443: tcp 0
12:30:09.609948 IP 192.168.1.6.59684 > 18.165.31.39.443: tcp 0
12:30:09.611305 IP 192.168.1.6.59684 > 18.165.31.39.443: tcp 0
12:30:09.615727 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 0
12:30:09.615730 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 179
12:30:09.615733 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 62
12:30:09.621125 IP 192.168.1.6.59684 > 18.165.31.39.443: tcp 64
12:30:09.621483 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 46
12:30:09.623830 IP 192.168.1.6.59696 > 18.165.31.39.443: tcp 64
12:30:09.625660 IP 192.168.1.6.59716 > 18.165.31.39.443: tcp 64
12:30:09.627881 IP 192.168.1.6.59702 > 18.165.31.39.443: tcp 64
12:30:09.627881 IP 192.168.1.6.59684 > 18.165.31.39.443: tcp 142
12:30:09.631657 IP 192.168.1.6.59716 > 18.165.31.39.443: tcp 142
12:30:09.632761 IP 192.168.1.6.59702 > 18.165.31.39.443: tcp 142
12:30:09.633983 IP 192.168.1.6.59696 > 18.165.31.39.443: tcp 142
12:30:09.636803 IP 18.165.31.39.443 > 192.168.1.6.59684: tcp 0
12:30:09.636806 IP 18.165.31.39.443 > 192.168.1.6.59684: tcp 179
12:30:09.637398 IP 18.165.31.39.443 > 192.168.1.6.59684: tcp 62
12:30:09.640931 IP 18.165.31.39.443 > 192.168.1.6.59716: tcp 0
12:30:09.640934 IP 18.165.31.39.443 > 192.168.1.6.59716: tcp 179
12:30:09.641234 IP 18.165.31.39.443 > 192.168.1.6.59716: tcp 62
12:30:09.641239 IP 18.165.31.39.443 > 192.168.1.6.59696: tcp 0
12:30:09.641380 IP 192.168.1.6.59684 > 18.165.31.39.443: tcp 0
12:30:09.641865 IP 18.165.31.39.443 > 192.168.1.6.59696: tcp 179
12:30:09.641867 IP 18.165.31.39.443 > 192.168.1.6.59696: tcp 62
12:30:09.641992 IP 192.168.1.6.59684 > 18.165.31.39.443: tcp 0
12:30:09.643005 IP 18.165.31.39.443 > 192.168.1.6.59684: tcp 0
12:30:09.643008 IP 18.165.31.39.443 > 192.168.1.6.59702: tcp 0
12:30:09.643513 IP 18.165.31.39.443 > 192.168.1.6.59702: tcp 179
12:30:09.643515 IP 18.165.31.39.443 > 192.168.1.6.59702: tcp 62
12:30:09.646395 IP 192.168.1.6.59716 > 18.165.31.39.443: tcp 0
12:30:09.646919 IP 192.168.1.6.59716 > 18.165.31.39.443: tcp 0
12:30:09.646948 IP 18.165.31.39.443 > 192.168.1.6.59716: tcp 0
12:30:09.647400 IP 18.165.31.39.443 > 192.168.1.6.59702: tcp 0
12:30:09.648058 IP 192.168.1.6.59696 > 18.165.31.39.443: tcp 0
12:30:09.648301 IP 192.168.1.6.59696 > 18.165.31.39.443: tcp 0
12:30:09.648956 IP 192.168.1.6.59684 > 18.165.31.39.443: tcp 0
12:30:09.650770 IP 192.168.1.6.59702 > 18.165.31.39.443: tcp 0
12:30:09.651024 IP 192.168.1.6.59702 > 18.165.31.39.443: tcp 0
12:30:09.651110 IP 18.165.31.39.443 > 192.168.1.6.59696: tcp 0
12:30:09.651845 IP 192.168.1.6.59716 > 18.165.31.39.443: tcp 0
12:30:09.652695 IP 192.168.1.6.59702 > 18.165.31.39.443: tcp 0
12:30:09.653696 IP 192.168.1.6.59696 > 18.165.31.39.443: tcp 0
12:30:09.660387 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
12:30:09.684827 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 0
12:30:09.690641 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 627
12:30:09.704981 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 0
12:30:09.705162 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 31
12:30:09.711208 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
12:30:09.760159 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 492
12:30:09.765474 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
12:30:09.767577 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 627
12:30:09.767683 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 31
12:30:09.770005 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 908
12:30:09.770249 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 31
12:30:09.773941 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 100
12:30:09.773944 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
12:30:09.777582 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
12:30:09.820423 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 610
12:30:09.820425 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 31
12:30:09.827273 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 148
12:30:09.866522 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
12:30:09.894700 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 0
12:30:09.895439 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 613
12:30:09.895681 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 31
12:30:09.898710 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
12:30:09.898876 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
12:30:09.899138 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1042
12:30:09.899284 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 31
12:30:09.902853 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 87
12:30:09.903856 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
12:30:09.904491 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
12:30:09.905791 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
12:30:09.906827 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
12:30:09.907636 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
12:30:09.916869 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 0
12:30:09.956592 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 628
12:30:09.956928 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 31
12:30:09.965931 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
12:30:09.966793 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
12:30:10.000897 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 580
12:30:10.000900 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 31
12:30:10.010907 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
12:30:10.011922 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
12:30:10.615816 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
12:30:10.616155 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
12:30:10.616273 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
12:30:10.616534 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
12:30:10.617085 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
12:30:10.617088 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 255
12:30:10.617728 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 31
12:30:10.623012 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
12:30:10.623505 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
12:30:10.624682 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
12:30:10.625558 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
12:30:10.657567 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 128
12:30:10.674594 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 0
12:30:11.977863 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
12:30:11.977867 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
12:30:11.977888 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
12:30:11.977950 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
12:30:11.978661 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
12:30:11.979297 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
12:30:11.979540 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
12:30:11.980040 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
12:30:11.980491 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
12:30:11.981418 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
12:30:11.981421 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
12:30:11.981723 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
12:30:11.981984 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
12:30:11.982230 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
12:30:11.982559 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
12:30:11.983197 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
12:30:11.983304 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
12:30:11.983938 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
12:30:11.984102 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
12:30:11.984738 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
12:30:11.985430 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 752
12:30:11.989971 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
12:30:11.991412 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
12:30:11.993843 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
12:30:11.995787 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
12:30:11.997869 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
12:30:11.999867 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
12:30:12.001811 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
12:30:12.001997 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
12:30:12.002436 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
12:30:12.002439 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
12:30:12.002658 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
12:30:12.003050 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
12:30:12.003204 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
12:30:12.003839 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
12:30:12.004082 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
12:30:12.004447 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
12:30:12.004757 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
12:30:12.004760 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
12:30:12.005375 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
12:30:12.005621 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
12:30:12.005964 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
12:30:12.006158 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
12:30:12.006537 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
12:30:12.007040 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
12:30:12.007695 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
12:30:12.008727 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
12:30:12.008925 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
12:30:12.009316 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
12:30:12.009319 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
12:30:12.009949 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
12:30:12.010496 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
12:30:12.010501 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
12:30:12.011138 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
12:30:12.011885 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
12:30:12.013577 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
12:30:12.013852 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
12:30:12.013999 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
12:30:12.014503 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
12:30:12.014506 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 34
12:30:12.020386 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
12:30:12.029436 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
12:30:12.029440 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
12:30:12.029442 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
12:30:12.029679 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
12:30:12.029682 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
12:30:12.029720 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
12:30:19.011769 IP 192.168.1.6.59794 > 18.165.48.150.443: tcp 0
12:30:19.027482 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 0
12:30:19.040921 IP 192.168.1.6.59794 > 18.165.48.150.443: tcp 0
12:30:19.052885 IP 192.168.1.6.59794 > 18.165.48.150.443: tcp 517
12:30:19.069500 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 0
12:30:19.070432 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
12:30:19.070435 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
12:30:19.070675 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
12:30:19.071269 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
12:30:19.071364 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 279
12:30:19.081180 IP 192.168.1.6.59794 > 18.165.48.150.443: tcp 0
12:30:19.082904 IP 192.168.1.6.59794 > 18.165.48.150.443: tcp 0
12:30:19.092103 IP 192.168.1.6.59794 > 18.165.48.150.443: tcp 0
12:30:19.092104 IP 192.168.1.6.59794 > 18.165.48.150.443: tcp 0
12:30:19.092104 IP 192.168.1.6.59794 > 18.165.48.150.443: tcp 0
12:30:19.108968 IP 192.168.1.6.59794 > 18.165.48.150.443: tcp 64
12:30:19.125605 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 0
12:30:19.125848 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 179
12:30:19.125851 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 62
12:30:19.140317 IP 192.168.1.6.59794 > 18.165.48.150.443: tcp 332
12:30:19.144500 IP 192.168.1.6.59794 > 18.165.48.150.443: tcp 0
12:30:19.155698 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 31
12:30:19.164688 IP 192.168.1.6.59794 > 18.165.48.150.443: tcp 31
12:30:19.220699 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 0
12:30:19.319876 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
12:30:19.319908 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
12:30:19.320169 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
12:30:19.320242 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
12:30:19.320919 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
12:30:19.320922 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
12:30:19.321943 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
12:30:19.322187 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
12:30:19.322503 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
12:30:19.323115 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
12:30:19.323507 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
12:30:19.323510 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
12:30:19.324093 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
12:30:19.324096 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
12:30:19.324868 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
12:30:19.325112 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
12:30:19.325618 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
12:30:19.325961 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
12:30:19.326414 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
12:30:19.326670 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
12:30:19.327216 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
12:30:19.327349 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
12:30:19.328550 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
12:30:19.328612 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
12:30:19.328859 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
12:30:19.328862 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 546
12:30:19.329571 IP 192.168.1.6.59794 > 18.165.48.150.443: tcp 0
12:30:19.330089 IP 192.168.1.6.59794 > 18.165.48.150.443: tcp 0
12:30:19.332010 IP 192.168.1.6.59794 > 18.165.48.150.443: tcp 0
12:30:19.333815 IP 192.168.1.6.59794 > 18.165.48.150.443: tcp 0
12:30:19.335505 IP 192.168.1.6.59794 > 18.165.48.150.443: tcp 0
12:30:19.337202 IP 192.168.1.6.59794 > 18.165.48.150.443: tcp 0
12:30:19.338890 IP 192.168.1.6.59794 > 18.165.48.150.443: tcp 0
12:30:19.340906 IP 192.168.1.6.59794 > 18.165.48.150.443: tcp 0
12:30:19.342503 IP 192.168.1.6.59794 > 18.165.48.150.443: tcp 0
12:30:19.344314 IP 192.168.1.6.59794 > 18.165.48.150.443: tcp 0
12:30:19.345208 IP 192.168.1.6.59794 > 18.165.48.150.443: tcp 0
12:30:19.346758 IP 192.168.1.6.59794 > 18.165.48.150.443: tcp 0
12:30:19.348070 IP 192.168.1.6.59794 > 18.165.48.150.443: tcp 0
      1 Reply Last reply Reply Quote 0
      • stephenw10S
        stephenw10 Netgate Administrator
        last edited by

        Are you able to send the actual pcap to review?

        My first guess here would be some MTU/MSS issue. You should see missing packets or resends in the capture for that though.

        Otherwise DNS does seem a likely suspect. When you enable a VPN is it to some external server that supplies it's own DNS servers?

        G 1 Reply Last reply Reply Quote 0
        • G
          gambit100 @stephenw10
          last edited by

          @stephenw10 said in Android apps thru pfsense router hang (session/state issue?):

          Are you able to send the actual pcap to review?
          The above is the captured pcap but I'll post another one with more details.

          My first guess here would be some MTU/MSS issue. You should see missing packets or resends in the capture for that though.
          I'll look for that when I grab another pcap with details enabled.

          Otherwise DNS does seem a likely suspect. When you enable a VPN is it to some external server that supplies it's own DNS servers?
          The VPN is an ipsec VPN to the pfsense router. Something about changing the IP address of the android client (either VPN or cellular) appears to clear up the issue, at least temporarily. The VPN DNS server is the pfsense router as it also is without VPN. Since the cellular is a completely different DNS server, I guess that tends to eliminate the DNS server as the issue unless the Android client has some odd issue.

          1 Reply Last reply Reply Quote 0
          • stephenw10S
            stephenw10 Netgate Administrator
            last edited by

            You can download the actual pcap file if you ran that in the gui. It contains a lot more information. You can open it in Wireshark and see duplicated and missing packets etc.

            G 1 Reply Last reply Reply Quote 0
            • G
              gambit100 @stephenw10
              last edited by

              @stephenw10 I did another packet capture after this android effort so that previous capture is gone since it appears the GUI only maintains one copy. However, Everything is now working fine. I didn't fix this...it all just seems to work now after 2 weeks of pulling my hair out trying to figure it out. If/When it happens again, I'll get a better capture but I wanted to give you an update just so I didn't leave you hanging. Thanks for your help.

              1 Reply Last reply Reply Quote 1
              • First post
                Last post
              Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.