On Sun, 25 Aug 2013 17:36:45 +0200 Oliver Schad <[email protected]> wrote:
> On Sat, 24 Aug 2013 23:14:36 -0500 > Chris Buechler <[email protected]> wrote: > > > Unlikely it's a TCP timeout given the timing of it, likely you have > > asymmetric routing somewhere, which is fine with a plain router, but > > not fine with a stateful firewall. It can be worked around with > > sloppy state rules, but how and where depends on the network setup > > in general, where that's happening, and if it's definitely the case. > > There is only one router between, so it is symmetric. But I have a > overlapping subnet configuration, where I have more specific routes > to. Maybe this is the point where it breaks. > > But I'm wondering why this breaks only every 1 or 2 hours with so many > connections. So waht I can say is that without any filtering (Advanced -> Firewall/NAT -> disable firewall) it works. I will migrate the destination network with the DB for testing and report again. After that both network would be managed by the pfsense directly. I don't see a mistake in the routing setup and I don't understand why routing should fail every one or two hours once. Best Regards Oli
signature.asc
Description: PGP signature
_______________________________________________ List mailing list [email protected] http://lists.pfsense.org/mailman/listinfo/list
