jamespev wrote:
Hello all! I am having a major issue that I'm hoping you can shed
light on. We recently added an MPLS link from our location to our
other company offices (replacing a pfsense VPN tunnel that was working
great) and am now having issues across it. The MPLS is hooked to a
cisco router sitting behind our pfsense firewall, and I setup a static
route on pfsense over to it for the appropriate subnet. This seemed
to work fine, but after using it a bit it seems that traffic is
getting stalled somewhere. If I setup a static route on my desktop
machine (client machine on network) to the cisco (for the appropriate
subnet) everything works perfectly. So it seems something is
happening on the pfsense machine. Shorter transactions seem to be
fine, pinging always works. Outlook however is very unhappy
(consequently so are the users...). In general it seems that TCP
services being effected most.
I did a packet capture with and without the static route on my
client machine. With all the traffic going through the pfsense there
were a lot of TCP retransmissions happening.
Could this be an issue with pfsense's packet scrubbing? There is
nothing in the firewall logs to indicate that anything is being
blocked. I am using 1.2RC2.
If anyone has any ideas I would be very appreciative. I think the
users are starting to gather torches and pitchforks...
James
You haven't specified what MPLS-based service(s) you're taking!
First point of call for all MPLS-related issues : have you made sure you
can pass full 1500-byte frames across the circuit?
adam.
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
