Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    Can't Get To Certain Sites

    General pfSense Questions
    3
    5
    1579
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • L
      lattera last edited by

      I just inherited a Pentium 4 server and decided to use that as a dedicated pfsense router/firewall. I did a default install. I can get to certain sites fine, like Google. But other sites, like Netflix, I can't get to. I'm not exactly sure what's wrong. Has anyone dealt with something like this before? There's no extra firewall rules in place, just a default install. I'm running pfsense 1.2.3.

      1 Reply Last reply Reply Quote 0
      • P
        Perry last edited by

        http://doc.pfsense.org/index.php/Unable_to_Access_Some_Websites

        1 Reply Last reply Reply Quote 0
        • L
          lattera last edited by

          Thanks for the link. The only thing it could be on that list of items is the MTU. The WAN gateway is set up properly. Subnet masks are set up properly. I'm not sure about the MTU–I've never had an issue in dealing with MTUs before. I'm using pfSense 1.2.3-RELEASE. I'm not sure about hardware checksums--another thing I've never had issues with.

          I'll check out the MTU and the hardware checksums. I'm not sure that either are an issue, but it's possible.

          I did a traceroute of google.com, and it went through successfully. I did a traceroute of netflix.com, and it didn't get past the pfSense firewall.

          1 Reply Last reply Reply Quote 0
          • ?
            Guest last edited by

            Try dropping your MTU then and see if it fixes the problem.  You can drop the MTU down quite low, 1400 (for instance) and then if that solves the problem, you can dial back up slowly until you get a breakage.

            If this doesn't solve the problem, other appropriate troubleshooting like ensuring you get a DNS response for the sites in question and getting packet captures of the exact attempt to access the site will be a good way to dial into the problem.

            1 Reply Last reply Reply Quote 0
            • L
              lattera last edited by

              I was completely wrong on the subnet masks. My subnet mask for my WAN interface was incorrect. Thanks for the prompt help and the link. It's working perfectly now.

              1 Reply Last reply Reply Quote 0
              • First post
                Last post

              Products

              • Platform Overview
              • TNSR
              • pfSense
              • Appliances

              Services

              • Training
              • Professional Services

              Support

              • Subscription Plans
              • Contact Support
              • Product Lifecycle
              • Documentation

              News

              • Media Coverage
              • Press
              • Events

              Resources

              • Blog
              • FAQ
              • Find a Partner
              • Resource Library
              • Security Information

              Company

              • About Us
              • Careers
              • Partners
              • Contact Us
              • Legal
              Our Mission

              We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

              Subscribe to our Newsletter

              Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

              © 2021 Rubicon Communications, LLC | Privacy Policy