Plain Text noted....(thanks, just wanted to get the pass image in the rule :) )
Recommened MTU is 1504, so 1500 should be fine ( I switched to 1400 just for kicks to no avail) FYI, this is ONLY for fedex.com too... Am I right to assume it isn't the firewall? -Tim -----Original Message----- From: Scott Ullrich [mailto:[EMAIL PROTECTED] Sent: Wednesday, August 01, 2007 11:28 AM To: [email protected] Subject: Re: [pfSense Support] Strange issues with Fedex.com On 8/1/07, Tim Dickson <[EMAIL PROTECTED]> wrote: > > > > > I am having a weird issue accessing fedex.com and I'm wondering if you can help me determine if it is firewall related (or what it is). > > > > Now almost all of our machines (except servers) are nat'ed to the same > > external IP. (servers are 1:1 to their own public IP) > > > > Half of our workstations can access fedex.com the others cannot > > (although every once in a while the machines can access it). And half of our servers can and half cannot. > > > > DNS resolves correctly and I can take the IP from a machine that works > > and paste it into iexplorer and it won't resolve. > > > > I tried Mozilla firefox thinking it might be an IE messup... didn't work > > there either. > > > > I've reset all states in the firewall and resolved it from the firewall. > > (I've also checked all rules, which I don't have any outgoing rules for our network besides pass all rule for the subnet) > > > > And when I found a machine that worked I swapped IP's with a machine > > that didn't work. The machine still wouldn't work (incase it happened > > to be a rule in the firewall I missed). > > > > I am totally lost at what this could be... here is what I've concluded: > > > > > > DNS issue - Nope, able to resolve correctly (using nslookup) > > IP conflict - Nope, changed IP's and no dice > > Firewall issue - all machines use the same external IP so I don't think > > fedex would be blocking our IP, logs show nothing. > > Tracert - passes well past our gateway. > > > > If I turn on logging I can see the packet hit the firewall so I don't think it is anything internal. > > > > Aug 1 10:07:20 LAN 192.168.5.18:3574 199.81.218.50:80 TCP > > > > I've changed the Optimization Options as well. is this a firewall issue? I'm stuck! If you guys can think of anything I skipped let me know. > > > Is the MTU on wan correct to what the ISP expects? Maybe phone your ISP and ask if 1500 is okay for your connection. If you are using PPPoE you might want to lower your MTU to 1400 or so and see if it helps. Scott PS: please send plain text emails to public mailing lists. Sending HTML is considered to be bad manners. --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
