From owner-freebsd-ipfw@FreeBSD.ORG Tue Feb 18 15:20:25 2014 Return-Path: Delivered-To: freebsd-ipfw@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id ECE611DD for ; Tue, 18 Feb 2014 15:20:25 +0000 (UTC) Received: from msgw002-05.ocn.ad.jp (msgw002-05.ocn.ad.jp [180.37.203.80]) by mx1.freebsd.org (Postfix) with ESMTP id B58DC11A8 for ; Tue, 18 Feb 2014 15:20:25 +0000 (UTC) Received: from localhost (p12048-ipngn100104sizuokaden.shizuoka.ocn.ne.jp [153.185.230.48]) by msgw002-05.ocn.ad.jp (Postfix) with ESMTP id BCA56A42E10; Wed, 19 Feb 2014 00:20:24 +0900 (JST) Date: Wed, 19 Feb 2014 00:20:23 +0900 (JST) Message-Id: <20140219.002023.205359736.toshi@ruby.ocn.ne.jp> To: lists@jnielsen.net Subject: Re: something is wrong after 9.2 to 10.0 From: SAITOU Toshihide In-Reply-To: <845B3D92-A997-4872-AFBB-BCC23D96CD10@jnielsen.net> References: <20140215.123424.159647737.toshi@ruby.ocn.ne.jp> <845B3D92-A997-4872-AFBB-BCC23D96CD10@jnielsen.net> X-GPG-fingerprint: 34B3 0B6A 8520 F5B0 EBC7 69F6 C055 9F8A 0D49 F8FC X-Mailer: Mew version 6.2.51 on Emacs 22.3 / Mule 5.0 (SAKAKI) Mime-Version: 1.0 Content-Type: Text/Plain; charset=us-ascii Content-Transfer-Encoding: 7bit Cc: freebsd-ipfw@freebsd.org X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 18 Feb 2014 15:20:26 -0000 In message: <845B3D92-A997-4872-AFBB-BCC23D96CD10@jnielsen.net> John Nielsen writes: > On Feb 14, 2014, at 8:34 PM, SAITOU Toshihide wrote: > >> I'm using FreeBSD as desktop and also using as nat gateway. >> After update from 9.2 to 10.0, some network problem occurs >> on this desktop machine's environment. >> >> - Sometimes email transmission failed with >> `stat=Deferred: 452', maybe when the size is large. >> >> - Firefox failed to post a form of web page on https. >> >> - Cadaver is no longer able to put file. >> >> But if I delete the following rule, the problem don't occur. >> >> 00050 352686 304039811 nat 123 ip4 from any to any via alc0 >> >> And the related rc.conf entry is here: >> >> firewall_enable="YES" >> firewall_type="open" >> firewall_quiet="NO" >> firewall_logging="YES" >> firewall_nat_enable="YES" >> firewall_nat_interface="alc0" >> >> Is there any clue? > > I saw a similar problem when using NAT on a TSO-enabled interface in FreeBSD 10. Try running "ifconfig alc0 -tso" and/or adding "-tso" to the ifconfig_alc0 entry in your /etc/rc.conf. See also the related entry in the BUGS section at the end of ipfw(8) man page. > > JN Wow! "ifconfig alc0 -tso" solves the problem. Thank you! -- SAITOU Toshihide