Nick Holland wrote:
Guido Tschakert wrote:
Jonathan Schleifer wrote:
I don't see where you set the MTU/MSS? Are you sure you have set them
somewhere else? eBay is known to have problems with bad/wrong MTU/MSS.
Try adding scrub out on $ext_if max-mss 1414 to your pf.conf and adding
-mtu 1454 to the route. Also take a look at pppoe(4) [*NOT* pppoe(8)!],
section MTU/MSS ISSUES.
Hello Jonathan,
nice try, but i Don't use pppoe.
We have a DSL-Router from our providewr and as I mentioned before, we
had no Problems with the cisco-router doing the firewall job (Nat).
so, yes you DO use PPPoE. DSL systems VERY often have a
smaller-than-possible MTU.
This often causes problems much like you describe.
Just set it in your hostname.<if> file.
Google for simple ping tests to find the maximum MTU you can use in your
precise case...and see if setting the firewall accordingly solves your
problem.
Nick.
Um... no, not all DSL implementations are PPPoE. I have a DSL modem
that just gives me an Ethernet port on the back. Our ISP just has us
use a certain "hostname" in the DHCP request, and voilla, we are on the
Internet. There is no PPP negotiation involved. I am pretty intimate
with this, because I have clients that have been running PPPoE since
2.6/2.7 when I really had to hammer it to try to get it to work reliably.
And on my interface, the MTU is 1500...
vr0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
address: 00:50:ba:b3:a7:26
media: Ethernet autoselect (100baseTX full-duplex)
status: active
inet6 fe80::250:baff:feb3:a726%vr0 prefixlen 64 scopeid 0x2
inet XX.YY.200.188 netmask 0xffffffe0 broadcast XX.YY.200.191
Cheers,
Steve
