On 2011-12-10, Frank Schuhmann <[email protected]> wrote: > Hi Brandan, > > on the Windows 7 side all significant updates are done? > You?ve checked the Windows 7 internal firewall, to be sure that the false is > not > pointed or placed in their? > > Because you wrote that the Win XP was not producing the problem, but Win 7 > should do it, it is perhaps the TCP window scaling, as declared in the RFC > 1323. > In some similar other cases it was sometimes fixing the problem (pfsense) and > in > sometimes also not, but to quick test it out the spended time will to be of > value.
Yes this is what I meant about the improvements in the Windows network stack. This sort of thing used to cause a problem with stateful firewall rules in places (because we do sequence number tracking) until we started doing "flags s/sa keep state" by default. However it wouldn't result into the interface totally locking up until it's reset. (btw Brandon, Note that "ifconfig vrX down; ifconfig vrX up" would probably also clear it without a full reboot). > On the BSD side perhaps you try to turn of the scaling, I?m not an OpenBSD > professional but it must be turn out by setting up a shell order likes <sysctl > -w net.inet.tcp.rfc1323=0> > If not or it must be typed in, in other direction it will be super that > perhaps > an OpenBSD familiar list member would correct this please. This is the correct command but it only affects the local tcp stack, not forwarded packets, so I think this will have no effect here. > > And at the other point I consider what Stuart Henderson was mentoring to you. > Perhaps the best at all, > but keeping an eye on the net6501 is also a nice option ;) > > > I hope this is helping you out. > > ------------------------------------ > Kind regards > > Frank > > -----Original Message----- > From: [email protected] > [mailto:[email protected]] On Behalf Of Brandan Rowley > Sent: Friday, December 09, 2011 11:11 PM > To: '[email protected]' > Subject: [Soekris] vr0 using OpenBSD stops responding. > >>Hi, >>I am new to the list so be gentle if this has been posted already. I am using > two net5501 (with the VPN chip) running OpenBSD 4.9 to setup a VPN tunnel. >>The tunnel has been up and running for a while. We've recently added Windows >>7 > PC to the network. Performing file transfers from the Windows 7 PC's >>across the VPN tunnel causes the internal interface of the net5501 to stop > responding. A reboot is needed to get the interface communicating again. >>This repeatable. Windows XP clients have no issues. Is this a fix or > workaround for this? I've tried OpenBSD 5.0 and read of similar issues on > OpenBSD, >>but have not found a resolution. > >>Regards, >>Brandan > > > > > __________ Hinweis von ESET NOD32 Antivirus, Signaturdatenbank-Version 6699 > (20111210) __________ > > E-Mail wurde gepr?ft mit ESET NOD32 Antivirus. > > http://www.eset.com > = _______________________________________________ Soekris-tech mailing list [email protected] http://lists.soekris.com/mailman/listinfo/soekris-tech
