Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    PfSense 2.3 upgrade causing intermittent connection issues

    Scheduled Pinned Locked Moved General pfSense Questions
    2 Posts 1 Posters 1.2k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • A Offline
      agentdesign
      last edited by

      We are running a pfSense C2758 with two WAN connections (PPPoE).

      Everything has been working fine until last week, when we upgraded the
      pfSense to 2.3 (from 2.2.6). Since then, staff have been complaining
      about intermittent connection timeouts/disconnects.

      It sounds to me like a path MTU discovery problem, and I've been trying
      to investigate the problem based on this assumption. I have lowered the
      MTU on a couple of the PCs in the office (from 1500 to 1452), and that
      seems to resolve the issue for those PCs, and appears to confirm my
      assumption regarding the cause.

      I have then lowered the MTU for the two PPPoE interfaces to 1452, in an
      attempt to work around the problem. Staff are now reporting that things
      are working normally again, with the exception of our IPSec link, which still
      seems to be experiencing intermittent connection timeouts.

      Can anyone shed any light on what changed between the versions that would
      have caused this?

      –
      Ross

      1 Reply Last reply Reply Quote 0
      • A Offline
        agentdesign
        last edited by

        Further to the above, we seem to have resolved the IPSec issue by lowering the MSS clamping to 1300 (from 1392).

        However, we're still left puzzled as to how this all worked fine under 2.2.6, and suddenly we need to be manually lowering packet size settings under 2.3.

        –
        Ross

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.