I am on 1.01 release, I was holding off till final releases since this is in production. I can upgrade later today and try. Occasionally it will work from a machine that doesn't work. If it ends up working it will continue to work pretty consistently until it doesn't work then it won't work for a while. I'll keep you posted... Thanks for the help. -Tim
-----Original Message----- From: Rainer Duffner [mailto:[EMAIL PROTECTED] Sent: Wednesday, August 01, 2007 12:13 PM To: [email protected] Subject: Re: [pfSense Support] Strange issues with Fedex.com Am 01.08.2007 um 20:53 schrieb Scott Ullrich: > On 8/1/07, Tim Dickson <[EMAIL PROTECTED]> wrote: >> Plain Text noted....(thanks, just wanted to get the pass image in >> the rule >> :) ) >> >> Recommened MTU is 1504, so 1500 should be fine ( I switched to >> 1400 just for >> kicks to no avail) >> >> FYI, this is ONLY for fedex.com too... Am I right to assume it >> isn't the >> firewall? >> -Tim > > Hrm, I wouldn't be so sure as of yet. What version are you on? If > you are not on a recent snapshot can you please try? We fixed a bug > in PF w/ modulate state but I doubt that would help but it's worth a > try. > > The only other thing that I can think of would be to try 1300 as a > MTU. I have seen this problem when MTU issues are on the WAN link. > I have such a MTU problem (going to eBay.com, for example, usually doesn't work, or cgiX.ebay.com etc.) - but it requires setting the MTU to 1452. Values less than 1452 don't work so well, either. The "half" of your workstations that can access the site - are they always the same "half"? What you can do is run a tcpdump on the WAN-interface (or tcpdump on a host behind the WAN-interface, via a hub) so see what pfsense is doing and what fedex is sending (if at all). cheers, Rainer -- Rainer Duffner CISSP, LPI, MCSE [EMAIL PROTECTED] --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
