Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Android apps thru pfsense router hang (session/state issue?)

    Scheduled Pinned Locked Moved General pfSense Questions
    5 Posts 2 Posters 212 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • G
      gambit100
      last edited by stephenw10

      A few (but not all) android apps hang on start or refresh (i.e, Strava, Kobo, and Libby hang). After many seconds to minutes, they start working. I don't believe it's a firewall issues since I can reach the web sites via a browser with no issue. I'm wondering if it's an issue with the connection session/state and have tried to diagnose the issue but since I'm not an expert, I'm not sure if this is the correct avenue to research. Also, it seems odd that Strava is sending multiple connections using different ports (I believe this creates separate sessions) at the same time so possible a DNS issue?

      I would appreciate some advice on how to figure this out. Below are the steps I've take so far.

      1. no entries show up in the firewall logs or systems logs that seem relevant.
      2. all messages on the LAN appear to go thru the WAN successfully.
      3. If I kill Wifi and use cellular, the apps start working. Likewise, If I establish a VPN, the apps also start working.
      4. Before refreshing Stava, the State stable for Stava connections (18.165.0.0/16) looks like this for the local client 192.168.1.6:
        *States before Strava Refresh
        LAN tcp 192.168.1.6:39668 -> 18.165.53.35:443 TIME_WAIT:TIME_WAIT 8 / 6 1005 B / 739 B
        LAN tcp 192.168.1.6:39688 -> 18.165.31.54:443 TIME_WAIT:TIME_WAIT 14 / 12 1 KiB / 8 KiB
        LAN tcp 192.168.1.6:43526 -> 18.165.31.82:443 TIME_WAIT:TIME_WAIT 14 / 12 1 KiB / 8 KiB
        LAN tcp 192.168.1.6:39660 -> 18.165.31.54:443 TIME_WAIT:TIME_WAIT 14 / 12 1 KiB / 8 KiB
        LAN tcp 192.168.1.6:39676 -> 18.165.31.54:443 TIME_WAIT:TIME_WAIT 14 / 12 1 KiB / 8 KiB
        LAN tcp 192.168.1.6:39696 -> 18.165.31.54:443 ESTABLISHED:ESTABLISHED 52 / 76 4 KiB / 75 KiB
        LAN tcp 192.168.1.6:53820 -> 18.165.53.35:443 ESTABLISHED:ESTABLISHED 11 / 9 3 KiB / 6 KiB

      After refreshing Strava, the state table looks like this:
      *States immediately after Strava Refresh
      LAN tcp 192.168.1.6:39696 -> 18.165.31.54:443 TIME_WAIT:TIME_WAIT 53 / 76 4 KiB / 75 KiB
      LAN tcp 192.168.1.6:53820 -> 18.165.53.35:443 TIME_WAIT:TIME_WAIT 12 / 9 3 KiB / 6 KiB

      After Strava successfully refreshes, the state table looks like this:
      *States after Strava finally completes refresh
      LAN tcp 192.168.1.6:37008 -> 18.165.53.35:443 TIME_WAIT:TIME_WAIT 8 / 6 1005 B / 739 B
      LAN tcp 192.168.1.6:59684 -> 18.165.31.39:443 TIME_WAIT:TIME_WAIT 12 / 12 1 KiB / 8 KiB
      LAN tcp 192.168.1.6:59696 -> 18.165.31.39:443 TIME_WAIT:TIME_WAIT 12 / 12 1 KiB / 8 KiB
      LAN tcp 192.168.1.6:59702 -> 18.165.31.39:443 TIME_WAIT:TIME_WAIT 12 / 12 1 KiB / 8 KiB
      LAN tcp 192.168.1.6:45050 -> 18.165.31.41:443 ESTABLISHED:ESTABLISHED 52 / 81 4 KiB / 81 KiB
      LAN tcp 192.168.1.6:59716 -> 18.165.31.39:443 TIME_WAIT:TIME_WAIT 12 / 12 1 KiB / 8 KiB
      LAN tcp 192.168.1.6:59794 -> 18.165.48.150:443 ESTABLISHED:ESTABLISHED 25 / 38 2 KiB / 43 KiB
      LAN tcp 192.168.1.6:35760 -> 18.165.53.35:443 ESTABLISHED:ESTABLISHED 10 / 9 3 KiB / 6 KiB

      The capture log on the LAN is as follows with the successful refresh starting at 12:30:19:

      12:29:49.737789 IP 192.168.1.6.37008 > 18.165.53.35.443: tcp 0
      12:29:49.752561 IP 18.165.53.35.443 > 192.168.1.6.37008: tcp 0
      12:29:49.759565 IP 192.168.1.6.37008 > 18.165.53.35.443: tcp 0
      12:29:49.767510 IP 192.168.1.6.37008 > 18.165.53.35.443: tcp 517
      12:29:49.782758 IP 18.165.53.35.443 > 192.168.1.6.37008: tcp 0
      12:29:49.783083 IP 18.165.53.35.443 > 192.168.1.6.37008: tcp 240
      12:29:49.790228 IP 192.168.1.6.37008 > 18.165.53.35.443: tcp 0
      12:29:49.792657 IP 192.168.1.6.37008 > 18.165.53.35.443: tcp 64
      12:29:49.794990 IP 192.168.1.6.37008 > 18.165.53.35.443: tcp 24
      12:29:49.806677 IP 18.165.53.35.443 > 192.168.1.6.37008: tcp 0
      12:29:49.806786 IP 18.165.53.35.443 > 192.168.1.6.37008: tcp 179
      12:29:49.810627 IP 18.165.53.35.443 > 192.168.1.6.37008: tcp 0
      12:29:49.813140 IP 192.168.1.6.37008 > 18.165.53.35.443: tcp 0
      12:29:49.817345 IP 192.168.1.6.37008 > 18.165.53.35.443: tcp 0
      12:30:09.543296 IP 192.168.1.6.59696 > 18.165.31.39.443: tcp 0
      12:30:09.543296 IP 192.168.1.6.59684 > 18.165.31.39.443: tcp 0
      12:30:09.543298 IP 192.168.1.6.59702 > 18.165.31.39.443: tcp 0
      12:30:09.543347 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
      12:30:09.543643 IP 192.168.1.6.59716 > 18.165.31.39.443: tcp 0
      12:30:09.558714 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 0
      12:30:09.558718 IP 18.165.31.39.443 > 192.168.1.6.59696: tcp 0
      12:30:09.558719 IP 18.165.31.39.443 > 192.168.1.6.59684: tcp 0
      12:30:09.559307 IP 18.165.31.39.443 > 192.168.1.6.59702: tcp 0
      12:30:09.559310 IP 18.165.31.39.443 > 192.168.1.6.59716: tcp 0
      12:30:09.572630 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
      12:30:09.572630 IP 192.168.1.6.59696 > 18.165.31.39.443: tcp 0
      12:30:09.572631 IP 192.168.1.6.59702 > 18.165.31.39.443: tcp 0
      12:30:09.572634 IP 192.168.1.6.59684 > 18.165.31.39.443: tcp 0
      12:30:09.572711 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 517
      12:30:09.572713 IP 192.168.1.6.59716 > 18.165.31.39.443: tcp 0
      12:30:09.572714 IP 192.168.1.6.59702 > 18.165.31.39.443: tcp 517
      12:30:09.572970 IP 192.168.1.6.59696 > 18.165.31.39.443: tcp 517
      12:30:09.575826 IP 192.168.1.6.59716 > 18.165.31.39.443: tcp 517
      12:30:09.576172 IP 192.168.1.6.59684 > 18.165.31.39.443: tcp 517
      12:30:09.587425 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 0
      12:30:09.587428 IP 18.165.31.39.443 > 192.168.1.6.59702: tcp 0
      12:30:09.587430 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 234
      12:30:09.587853 IP 18.165.31.39.443 > 192.168.1.6.59702: tcp 1428
      12:30:09.587855 IP 18.165.31.39.443 > 192.168.1.6.59702: tcp 1428
      12:30:09.588096 IP 18.165.31.39.443 > 192.168.1.6.59702: tcp 1428
      12:30:09.588099 IP 18.165.31.39.443 > 192.168.1.6.59702: tcp 1428
      12:30:09.588591 IP 18.165.31.39.443 > 192.168.1.6.59702: tcp 1428
      12:30:09.590961 IP 18.165.31.39.443 > 192.168.1.6.59696: tcp 0
      12:30:09.591328 IP 18.165.31.39.443 > 192.168.1.6.59716: tcp 0
      12:30:09.591331 IP 18.165.31.39.443 > 192.168.1.6.59702: tcp 638
      12:30:09.591361 IP 18.165.31.39.443 > 192.168.1.6.59684: tcp 0
      12:30:09.591371 IP 18.165.31.39.443 > 192.168.1.6.59696: tcp 1428
      12:30:09.591417 IP 18.165.31.39.443 > 192.168.1.6.59696: tcp 1428
      12:30:09.591419 IP 18.165.31.39.443 > 192.168.1.6.59696: tcp 1428
      12:30:09.591655 IP 18.165.31.39.443 > 192.168.1.6.59716: tcp 1428
      12:30:09.591658 IP 18.165.31.39.443 > 192.168.1.6.59716: tcp 1428
      12:30:09.591661 IP 18.165.31.39.443 > 192.168.1.6.59716: tcp 1428
      12:30:09.591666 IP 18.165.31.39.443 > 192.168.1.6.59716: tcp 1428
      12:30:09.591666 IP 18.165.31.39.443 > 192.168.1.6.59696: tcp 1428
      12:30:09.591671 IP 18.165.31.39.443 > 192.168.1.6.59716: tcp 1428
      12:30:09.591671 IP 18.165.31.39.443 > 192.168.1.6.59696: tcp 1428
      12:30:09.591675 IP 18.165.31.39.443 > 192.168.1.6.59684: tcp 1428
      12:30:09.591679 IP 18.165.31.39.443 > 192.168.1.6.59684: tcp 1428
      12:30:09.591682 IP 18.165.31.39.443 > 192.168.1.6.59684: tcp 1428
      12:30:09.591685 IP 18.165.31.39.443 > 192.168.1.6.59684: tcp 1428
      12:30:09.592302 IP 18.165.31.39.443 > 192.168.1.6.59684: tcp 1428
      12:30:09.593191 IP 18.165.31.39.443 > 192.168.1.6.59716: tcp 638
      12:30:09.593192 IP 18.165.31.39.443 > 192.168.1.6.59696: tcp 638
      12:30:09.593195 IP 18.165.31.39.443 > 192.168.1.6.59684: tcp 638
      12:30:09.596206 IP 192.168.1.6.59702 > 18.165.31.39.443: tcp 0
      12:30:09.596206 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
      12:30:09.596616 IP 192.168.1.6.59702 > 18.165.31.39.443: tcp 0
      12:30:09.597637 IP 192.168.1.6.59702 > 18.165.31.39.443: tcp 0
      12:30:09.599012 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 64
      12:30:09.600005 IP 192.168.1.6.59702 > 18.165.31.39.443: tcp 0
      12:30:09.601645 IP 192.168.1.6.59696 > 18.165.31.39.443: tcp 0
      12:30:09.602655 IP 192.168.1.6.59716 > 18.165.31.39.443: tcp 0
      12:30:09.603661 IP 192.168.1.6.59696 > 18.165.31.39.443: tcp 0
      12:30:09.603906 IP 192.168.1.6.59716 > 18.165.31.39.443: tcp 0
      12:30:09.605635 IP 192.168.1.6.59684 > 18.165.31.39.443: tcp 0
      12:30:09.606107 IP 192.168.1.6.59684 > 18.165.31.39.443: tcp 0
      12:30:09.606833 IP 192.168.1.6.59716 > 18.165.31.39.443: tcp 0
      12:30:09.607192 IP 192.168.1.6.59716 > 18.165.31.39.443: tcp 0
      12:30:09.608034 IP 192.168.1.6.59696 > 18.165.31.39.443: tcp 0
      12:30:09.608899 IP 192.168.1.6.59696 > 18.165.31.39.443: tcp 0
      12:30:09.609948 IP 192.168.1.6.59684 > 18.165.31.39.443: tcp 0
      12:30:09.611305 IP 192.168.1.6.59684 > 18.165.31.39.443: tcp 0
      12:30:09.615727 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 0
      12:30:09.615730 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 179
      12:30:09.615733 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 62
      12:30:09.621125 IP 192.168.1.6.59684 > 18.165.31.39.443: tcp 64
      12:30:09.621483 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 46
      12:30:09.623830 IP 192.168.1.6.59696 > 18.165.31.39.443: tcp 64
      12:30:09.625660 IP 192.168.1.6.59716 > 18.165.31.39.443: tcp 64
      12:30:09.627881 IP 192.168.1.6.59702 > 18.165.31.39.443: tcp 64
      12:30:09.627881 IP 192.168.1.6.59684 > 18.165.31.39.443: tcp 142
      12:30:09.631657 IP 192.168.1.6.59716 > 18.165.31.39.443: tcp 142
      12:30:09.632761 IP 192.168.1.6.59702 > 18.165.31.39.443: tcp 142
      12:30:09.633983 IP 192.168.1.6.59696 > 18.165.31.39.443: tcp 142
      12:30:09.636803 IP 18.165.31.39.443 > 192.168.1.6.59684: tcp 0
      12:30:09.636806 IP 18.165.31.39.443 > 192.168.1.6.59684: tcp 179
      12:30:09.637398 IP 18.165.31.39.443 > 192.168.1.6.59684: tcp 62
      12:30:09.640931 IP 18.165.31.39.443 > 192.168.1.6.59716: tcp 0
      12:30:09.640934 IP 18.165.31.39.443 > 192.168.1.6.59716: tcp 179
      12:30:09.641234 IP 18.165.31.39.443 > 192.168.1.6.59716: tcp 62
      12:30:09.641239 IP 18.165.31.39.443 > 192.168.1.6.59696: tcp 0
      12:30:09.641380 IP 192.168.1.6.59684 > 18.165.31.39.443: tcp 0
      12:30:09.641865 IP 18.165.31.39.443 > 192.168.1.6.59696: tcp 179
      12:30:09.641867 IP 18.165.31.39.443 > 192.168.1.6.59696: tcp 62
      12:30:09.641992 IP 192.168.1.6.59684 > 18.165.31.39.443: tcp 0
      12:30:09.643005 IP 18.165.31.39.443 > 192.168.1.6.59684: tcp 0
      12:30:09.643008 IP 18.165.31.39.443 > 192.168.1.6.59702: tcp 0
      12:30:09.643513 IP 18.165.31.39.443 > 192.168.1.6.59702: tcp 179
      12:30:09.643515 IP 18.165.31.39.443 > 192.168.1.6.59702: tcp 62
      12:30:09.646395 IP 192.168.1.6.59716 > 18.165.31.39.443: tcp 0
      12:30:09.646919 IP 192.168.1.6.59716 > 18.165.31.39.443: tcp 0
      12:30:09.646948 IP 18.165.31.39.443 > 192.168.1.6.59716: tcp 0
      12:30:09.647400 IP 18.165.31.39.443 > 192.168.1.6.59702: tcp 0
      12:30:09.648058 IP 192.168.1.6.59696 > 18.165.31.39.443: tcp 0
      12:30:09.648301 IP 192.168.1.6.59696 > 18.165.31.39.443: tcp 0
      12:30:09.648956 IP 192.168.1.6.59684 > 18.165.31.39.443: tcp 0
      12:30:09.650770 IP 192.168.1.6.59702 > 18.165.31.39.443: tcp 0
      12:30:09.651024 IP 192.168.1.6.59702 > 18.165.31.39.443: tcp 0
      12:30:09.651110 IP 18.165.31.39.443 > 192.168.1.6.59696: tcp 0
      12:30:09.651845 IP 192.168.1.6.59716 > 18.165.31.39.443: tcp 0
      12:30:09.652695 IP 192.168.1.6.59702 > 18.165.31.39.443: tcp 0
      12:30:09.653696 IP 192.168.1.6.59696 > 18.165.31.39.443: tcp 0
      12:30:09.660387 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
      12:30:09.684827 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 0
      12:30:09.690641 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 627
      12:30:09.704981 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 0
      12:30:09.705162 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 31
      12:30:09.711208 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
      12:30:09.760159 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 492
      12:30:09.765474 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
      12:30:09.767577 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 627
      12:30:09.767683 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 31
      12:30:09.770005 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 908
      12:30:09.770249 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 31
      12:30:09.773941 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 100
      12:30:09.773944 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
      12:30:09.777582 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
      12:30:09.820423 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 610
      12:30:09.820425 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 31
      12:30:09.827273 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 148
      12:30:09.866522 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
      12:30:09.894700 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 0
      12:30:09.895439 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 613
      12:30:09.895681 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 31
      12:30:09.898710 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
      12:30:09.898876 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
      12:30:09.899138 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1042
      12:30:09.899284 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 31
      12:30:09.902853 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 87
      12:30:09.903856 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
      12:30:09.904491 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
      12:30:09.905791 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
      12:30:09.906827 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
      12:30:09.907636 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
      12:30:09.916869 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 0
      12:30:09.956592 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 628
      12:30:09.956928 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 31
      12:30:09.965931 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
      12:30:09.966793 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
      12:30:10.000897 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 580
      12:30:10.000900 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 31
      12:30:10.010907 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
      12:30:10.011922 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
      12:30:10.615816 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
      12:30:10.616155 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
      12:30:10.616273 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
      12:30:10.616534 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
      12:30:10.617085 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
      12:30:10.617088 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 255
      12:30:10.617728 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 31
      12:30:10.623012 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
      12:30:10.623505 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
      12:30:10.624682 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
      12:30:10.625558 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
      12:30:10.657567 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 128
      12:30:10.674594 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 0
      12:30:11.977863 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
      12:30:11.977867 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
      12:30:11.977888 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
      12:30:11.977950 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
      12:30:11.978661 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
      12:30:11.979297 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
      12:30:11.979540 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
      12:30:11.980040 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
      12:30:11.980491 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
      12:30:11.981418 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
      12:30:11.981421 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
      12:30:11.981723 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
      12:30:11.981984 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
      12:30:11.982230 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
      12:30:11.982559 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
      12:30:11.983197 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
      12:30:11.983304 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
      12:30:11.983938 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
      12:30:11.984102 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
      12:30:11.984738 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
      12:30:11.985430 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 752
      12:30:11.989971 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
      12:30:11.991412 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
      12:30:11.993843 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
      12:30:11.995787 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
      12:30:11.997869 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
      12:30:11.999867 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
      12:30:12.001811 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
      12:30:12.001997 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
      12:30:12.002436 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
      12:30:12.002439 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
      12:30:12.002658 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
      12:30:12.003050 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
      12:30:12.003204 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
      12:30:12.003839 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
      12:30:12.004082 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
      12:30:12.004447 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
      12:30:12.004757 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
      12:30:12.004760 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
      12:30:12.005375 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
      12:30:12.005621 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
      12:30:12.005964 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
      12:30:12.006158 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
      12:30:12.006537 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
      12:30:12.007040 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
      12:30:12.007695 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
      12:30:12.008727 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
      12:30:12.008925 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
      12:30:12.009316 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
      12:30:12.009319 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
      12:30:12.009949 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
      12:30:12.010496 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
      12:30:12.010501 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
      12:30:12.011138 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
      12:30:12.011885 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
      12:30:12.013577 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
      12:30:12.013852 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
      12:30:12.013999 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
      12:30:12.014503 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 1428
      12:30:12.014506 IP 18.165.31.41.443 > 192.168.1.6.45050: tcp 34
      12:30:12.020386 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
      12:30:12.029436 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
      12:30:12.029440 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
      12:30:12.029442 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
      12:30:12.029679 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
      12:30:12.029682 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
      12:30:12.029720 IP 192.168.1.6.45050 > 18.165.31.41.443: tcp 0
      12:30:19.011769 IP 192.168.1.6.59794 > 18.165.48.150.443: tcp 0
      12:30:19.027482 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 0
      12:30:19.040921 IP 192.168.1.6.59794 > 18.165.48.150.443: tcp 0
      12:30:19.052885 IP 192.168.1.6.59794 > 18.165.48.150.443: tcp 517
      12:30:19.069500 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 0
      12:30:19.070432 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
      12:30:19.070435 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
      12:30:19.070675 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
      12:30:19.071269 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
      12:30:19.071364 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 279
      12:30:19.081180 IP 192.168.1.6.59794 > 18.165.48.150.443: tcp 0
      12:30:19.082904 IP 192.168.1.6.59794 > 18.165.48.150.443: tcp 0
      12:30:19.092103 IP 192.168.1.6.59794 > 18.165.48.150.443: tcp 0
      12:30:19.092104 IP 192.168.1.6.59794 > 18.165.48.150.443: tcp 0
      12:30:19.092104 IP 192.168.1.6.59794 > 18.165.48.150.443: tcp 0
      12:30:19.108968 IP 192.168.1.6.59794 > 18.165.48.150.443: tcp 64
      12:30:19.125605 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 0
      12:30:19.125848 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 179
      12:30:19.125851 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 62
      12:30:19.140317 IP 192.168.1.6.59794 > 18.165.48.150.443: tcp 332
      12:30:19.144500 IP 192.168.1.6.59794 > 18.165.48.150.443: tcp 0
      12:30:19.155698 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 31
      12:30:19.164688 IP 192.168.1.6.59794 > 18.165.48.150.443: tcp 31
      12:30:19.220699 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 0
      12:30:19.319876 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
      12:30:19.319908 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
      12:30:19.320169 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
      12:30:19.320242 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
      12:30:19.320919 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
      12:30:19.320922 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
      12:30:19.321943 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
      12:30:19.322187 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
      12:30:19.322503 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
      12:30:19.323115 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
      12:30:19.323507 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
      12:30:19.323510 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
      12:30:19.324093 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
      12:30:19.324096 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
      12:30:19.324868 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
      12:30:19.325112 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
      12:30:19.325618 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
      12:30:19.325961 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
      12:30:19.326414 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
      12:30:19.326670 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
      12:30:19.327216 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
      12:30:19.327349 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
      12:30:19.328550 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
      12:30:19.328612 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
      12:30:19.328859 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 1428
      12:30:19.328862 IP 18.165.48.150.443 > 192.168.1.6.59794: tcp 546
      12:30:19.329571 IP 192.168.1.6.59794 > 18.165.48.150.443: tcp 0
      12:30:19.330089 IP 192.168.1.6.59794 > 18.165.48.150.443: tcp 0
      12:30:19.332010 IP 192.168.1.6.59794 > 18.165.48.150.443: tcp 0
      12:30:19.333815 IP 192.168.1.6.59794 > 18.165.48.150.443: tcp 0
      12:30:19.335505 IP 192.168.1.6.59794 > 18.165.48.150.443: tcp 0
      12:30:19.337202 IP 192.168.1.6.59794 > 18.165.48.150.443: tcp 0
      12:30:19.338890 IP 192.168.1.6.59794 > 18.165.48.150.443: tcp 0
      12:30:19.340906 IP 192.168.1.6.59794 > 18.165.48.150.443: tcp 0
      12:30:19.342503 IP 192.168.1.6.59794 > 18.165.48.150.443: tcp 0
      12:30:19.344314 IP 192.168.1.6.59794 > 18.165.48.150.443: tcp 0
      12:30:19.345208 IP 192.168.1.6.59794 > 18.165.48.150.443: tcp 0
      12:30:19.346758 IP 192.168.1.6.59794 > 18.165.48.150.443: tcp 0
      12:30:19.348070 IP 192.168.1.6.59794 > 18.165.48.150.443: tcp 0
      
      1 Reply Last reply Reply Quote 0
      • stephenw10S
        stephenw10 Netgate Administrator
        last edited by

        Are you able to send the actual pcap to review?

        My first guess here would be some MTU/MSS issue. You should see missing packets or resends in the capture for that though.

        Otherwise DNS does seem a likely suspect. When you enable a VPN is it to some external server that supplies it's own DNS servers?

        G 1 Reply Last reply Reply Quote 0
        • G
          gambit100 @stephenw10
          last edited by

          @stephenw10 said in Android apps thru pfsense router hang (session/state issue?):

          Are you able to send the actual pcap to review?
          The above is the captured pcap but I'll post another one with more details.

          My first guess here would be some MTU/MSS issue. You should see missing packets or resends in the capture for that though.
          I'll look for that when I grab another pcap with details enabled.

          Otherwise DNS does seem a likely suspect. When you enable a VPN is it to some external server that supplies it's own DNS servers?
          The VPN is an ipsec VPN to the pfsense router. Something about changing the IP address of the android client (either VPN or cellular) appears to clear up the issue, at least temporarily. The VPN DNS server is the pfsense router as it also is without VPN. Since the cellular is a completely different DNS server, I guess that tends to eliminate the DNS server as the issue unless the Android client has some odd issue.

          1 Reply Last reply Reply Quote 0
          • stephenw10S
            stephenw10 Netgate Administrator
            last edited by

            You can download the actual pcap file if you ran that in the gui. It contains a lot more information. You can open it in Wireshark and see duplicated and missing packets etc.

            G 1 Reply Last reply Reply Quote 0
            • G
              gambit100 @stephenw10
              last edited by

              @stephenw10 I did another packet capture after this android effort so that previous capture is gone since it appears the GUI only maintains one copy. However, Everything is now working fine. I didn't fix this...it all just seems to work now after 2 weeks of pulling my hair out trying to figure it out. If/When it happens again, I'll get a better capture but I wanted to give you an update just so I didn't leave you hanging. Thanks for your help.

              1 Reply Last reply Reply Quote 1
              • First post
                Last post
              Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.