From owner-freebsd-current@freebsd.org  Fri Feb 12 20:22:20 2016
Return-Path: <owner-freebsd-current@freebsd.org>
Delivered-To: freebsd-current@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id 00D9CAA7D8D;
 Fri, 12 Feb 2016 20:22:20 +0000 (UTC) (envelope-from ler@lerctr.org)
Received: from thebighonker.lerctr.org (thebighonker.lerctr.org
 [IPv6:2001:470:1f0f:3ad:223:7dff:fe9e:6e8a])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (Client CN "thebighonker.lerctr.org",
 Issuer "COMODO RSA Domain Validation Secure Server CA" (verified OK))
 by mx1.freebsd.org (Postfix) with ESMTPS id CCA16188C;
 Fri, 12 Feb 2016 20:22:19 +0000 (UTC) (envelope-from ler@lerctr.org)
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=lerctr.org; 
 s=lerami;
 h=Message-ID:References:In-Reply-To:Subject:Cc:To:From:Date:
 Content-Transfer-Encoding:Content-Type:MIME-Version;
 bh=qRUoxYs4ZYUKbDv6ng/pyeZZ93YPb3L1c7h6cZL272Y=; b=HaRnKX1r7EKOl9Mohpvxd2o6J/
 WmlzYlN9uABV3IUcociptdTAy1c5OcmvHMZv/gdgtBajQZ/hKAU3oFaUi5iAoSdYURKio1osCoxzn
 aoye2wDdz2NsOvYrRcmxe0IZFfJ9+MtHRhIFIZD7PVym33blty+mu59Vz53AWwUCqRZk=;
Received: from thebighonker.lerctr.org
 ([2001:470:1f0f:3ad:223:7dff:fe9e:6e8a]:34036 helo=webmail.lerctr.org)
 by thebighonker.lerctr.org with esmtpsa
 (TLSv1.2:ECDHE-RSA-AES128-GCM-SHA256:128) (Exim 4.86 (FreeBSD))
 (envelope-from <ler@lerctr.org>)
 id 1aUKEM-000EP5-RU; Fri, 12 Feb 2016 14:22:19 -0600
Received: from proxy.lucent.com ([135.245.49.14]) by webmail.lerctr.org
 with HTTP (HTTP/1.1 POST); Fri, 12 Feb 2016 14:22:18 -0600
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8;
 format=flowed
Content-Transfer-Encoding: 8bit
Date: Fri, 12 Feb 2016 14:22:18 -0600
From: Larry Rosenman <ler@lerctr.org>
To: Kristof Provost <kp@freebsd.org>
Cc: Freebsd current <freebsd-current@freebsd.org>,
 owner-freebsd-current@freebsd.org
Subject: Re: IPV6 TCP6 Slow Connect
In-Reply-To: <ED881300-6C2D-4CD0-9F46-B8BD1C354B01@FreeBSD.org>
References: <8ca0068954b5cb25891c3324b2e8c863@thebighonker.lerctr.org>
 <20160211101449.GI19084@vega.codepro.be>
 <b152cabdaafbbfea7b17c7ebb4a0fb35@thebighonker.lerctr.org>
 <88197BB9-F03F-48BB-97DC-9BAAA2FA299F@FreeBSD.org>
 <125b65d56d310c0436ceb8047d1d0417@thebighonker.lerctr.org>
 <563b81912fc2de4670be51a832467ba9@thebighonker.lerctr.org>
 <06d72e0d3ae9f20bea04af39dba74847@thebighonker.lerctr.org>
 <D9EE0405-3818-400C-B52C-50BC5EB88CF4@FreeBSD.org>
 <33469a0ef87e3299819248f153d842d2@thebighonker.lerctr.org>
 <3df20fcac20d532ef77bf63ea2e042cb@thebighonker.lerctr.org>
 <A504FBD9-53B8-4AC0-876A-A9C37A139880@FreeBSD.org>
 <7d399dddcde79d950e0817acddcbcfc1@thebighonker.lerctr.org>
 <ED881300-6C2D-4CD0-9F46-B8BD1C354B01@FreeBSD.org>
Message-ID: <76bcaf21190fe4f053226fe0240b55f0@thebighonker.lerctr.org>
X-Sender: ler@lerctr.org
User-Agent: Roundcube Webmail/1.1.4
X-Spam-Score: -1.0 (-)
X-LERCTR-Spam-Score: -1.0 (-)
X-Spam-Report: SpamScore (-1.0/5.0) ALL_TRUSTED=-1,SHORTCIRCUIT=-0.0001
X-LERCTR-Spam-Report: SpamScore (-1.0/5.0) ALL_TRUSTED=-1, SHORTCIRCUIT=-0.0001
X-BeenThere: freebsd-current@freebsd.org
X-Mailman-Version: 2.1.20
Precedence: list
List-Id: Discussions about the use of FreeBSD-current
 <freebsd-current.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-current>, 
 <mailto:freebsd-current-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-current/>
List-Post: <mailto:freebsd-current@freebsd.org>
List-Help: <mailto:freebsd-current-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-current>, 
 <mailto:freebsd-current-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 12 Feb 2016 20:22:20 -0000

On 2016-02-12 14:07, Kristof Provost wrote:
>> On 12 Feb 2016, at 15:33, Larry Rosenman <ler@lerctr.org> wrote:
>> 
>> On 2016-02-12 08:31, Kristof Provost wrote:
>>>> On 12 Feb 2016, at 15:29, Larry Rosenman <ler@lerctr.org> wrote:
>>>> On 2016-02-12 08:13, Larry Rosenman wrote:
>>>>> sysctl net.inet.tcp.rfc1323=0
>>>>> makes it work
>>>> Shouldn't the stack do the right thing here?  For the record, the 
>>>> other side
>>>> is also FreeBSD (10.2-STABLE).
>>> Yes, but it’s possible that there’s a problem with the pf scrubbing 
>>> of
>>> the window scaling or timestamp options.
>>> I have a vague recollection of having looked at that in the past.
>>> Bug 172648 also claims there is/was an issue with checksums in that
>>> case, but I’ve never been able to reproduce it.
>>> Regards,
>>> Kristof
>> Ok.  Since I can reproduce this at will, and the 2 firewalls are 
>> pfSense, how can I help?
> 
> I’ll still need to reproduce it locally to fix it, but it might be
> interesting to know if the packet is dropped by the router, or sent
> out again with an incorrect checksum.
> Can you take a capture on the WAN interface and see if the TCP SYN
> makes it out (if it does, I’d expect the checksum to be wrong) or not?
> 
> Regards,
> Kristof
Will do tonight.

-- 
Larry Rosenman                     http://www.lerctr.org/~ler
Phone: +1 214-642-9640                 E-Mail: ler@lerctr.org
US Mail: 7011 W Parmer Ln, Apt 1115, Austin, TX 78729-6961