Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    MTU settings with pppoe

    General pfSense Questions
    1
    1
    1281
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • N
      nitsuj last edited by

      Hi

      I have Pfsense 2.0.1 on a mini PC with 2 nics. One interface on my LAN and the other connecting to my ISP via pppoe with a modem in bridge mode.

      Recently I setup a new mailserver which has a webmail component, the webserver runs on port 3000. So I have a port forwarding rule set to forward webmail traffic to the mail server on port 3000.

      Webmail works perfectly on my LAN.

      When I test externally in IE, firefox etc, I seem to get random results. From what I can see files for the webpage like css and javascript only half download or not at all causing the page to fail.

      I'm gussing I may have a blackhole router problem. Using wireshark on the mail server and pfsense packet capture I can see a TCP handshake take place, but then after a while I see [TCP Retransmission] packets.

      ifconfig on my interfaces

      LAN = 1500 mtu
      pppoe = 1492 mtu

      I do not have the MTU or MSS set on either interface.
      I have tried disableing PF scrubbing with no change.

      The packets that are retransmitted have a 1506 byte frame size and TCP len is 1452. Don't fragment is set!

      I guess these will be dropped. But shouldnt the firewall instruct the mail server to send smaller packets? Any ideas?

      Thanks

      1 Reply Last reply Reply Quote 0
      • First post
        Last post

      Products

      • Platform Overview
      • TNSR
      • pfSense
      • Appliances

      Services

      • Training
      • Professional Services

      Support

      • Subscription Plans
      • Contact Support
      • Product Lifecycle
      • Documentation

      News

      • Media Coverage
      • Press
      • Events

      Resources

      • Blog
      • FAQ
      • Find a Partner
      • Resource Library
      • Security Information

      Company

      • About Us
      • Careers
      • Partners
      • Contact Us
      • Legal
      Our Mission

      We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

      Subscribe to our Newsletter

      Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

      © 2021 Rubicon Communications, LLC | Privacy Policy