Problems when sending E-Mails
-
Hi,
This is my first time with pfsense, it was quite easy to install and make some basic configurations.
I was able to run dhcp/dns/proxy services whithout any trouble , but i encountered the following error: I am not able to send (just to send, i can recieve mails without any restriction) e-mails with attachments, when I try to send an e-mail which it's size is more than 600kb (aprox) i get a timeout from my mail client (currently thunderbird , but i tried with MS Outlook and it's the same). I also tried a telnet 25 to my mailserver and it get through correctly
Is this related with the firewall rules? Currently i only have the default rule (Lan >Any)Thank you for your help
-
That is probably not firewall rules, but could be a WAN MTU issue, or perhaps a problem on the ISP side of things.
Does it only happen with that one mail server? Do you have a gmail account you can try to send out via t-bird or MS outlook there as well, check the gmail site for config details.
-
That is probably not firewall rules, but could be a WAN MTU issue, or perhaps a problem on the ISP side of things.
Does it only happen with that one mail server? Do you have a gmail account you can try to send out via t-bird or MS outlook there as well, check the gmail site for config details.
I forgot to mention that this happens with other mail accounts (gmail, etc) , i don't think this is an isp related problem, before i implemented pfsense i had no trouble sending emails (even now, if i disable pfsense i can send emails whithout any trouble).
MTU is set to 1500 , this value should be lower? -
You could try lowering that to 1480 or so and see if it makes a difference.
The real way to tell would be to do a ~10000 packet traffic capture on WAN when you try to send out a large e-mail, then look at that in wireshark.
-
What is the timeout on your mail client?
-
We suffered from similar issues for quite a while before identifying the issue as a bad port on a NIC (ours turned out to be on the XO T-1 CPE, a Tasman box).ย Check your interfaces for errors and if you have any try a different NIC or different switch ports if possible.
-
You might also try shutting off hardware checksums under System > Advanced.
-
Also might be interesting to see if there are errors on the NIC stats.
