From owner-freebsd-net Sun Jul 2 23:46:24 2000 Delivered-To: freebsd-net@freebsd.org Received: from modemcable127.61-201-24.mtl.mc.videotron.net (modemcable079.102-200-24.mtl.mc.videotron.net [24.200.102.79]) by hub.freebsd.org (Postfix) with SMTP id B8FC337B5B8 for ; Sun, 2 Jul 2000 23:46:20 -0700 (PDT) (envelope-from patrick@mindstep.com) Received: (qmail 84135 invoked from network); 3 Jul 2000 06:46:19 -0000 Received: from patrak.local.mindstep.com (HELO PATRAK) (192.168.10.4) by jacuzzi.local.mindstep.com with SMTP; 3 Jul 2000 06:46:19 -0000 Message-ID: <051c01bfe4ba$466aaf30$040aa8c0@local.mindstep.com> From: "Patrick Bihan-Faou" To: "Karsten Patzwaldt" Cc: References: <20000702233552.A862@odysseus.gedankenpolizei.de> Subject: Re: NAT and PPPoE Date: Mon, 3 Jul 2000 02:45:28 -0400 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.00.2919.6700 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2919.6700 Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Hi, > OK, I finally got a DSL connection, and I set up a FreeBSD-router as a > router, using NAT to give access to the Internet for my whole network. > That works so far, I can connect via SSH, POP3 and so on. But FTP and > HTTP make problems. Those two protocols can be used from the router > without any problems, but the other computers on the LAN time out when > trying to connect to any server. They _are_ able to connect to to the > webservers of my provider (the german T-Online), but I don't reach any > other servers. This sounds very much like the problem many people are having with PPPoE setups and Path MTU Discovery not functioning properly on remote web servers. The only thing you can do is reduce the configure MTU on the CLIENT machines on the LAN to something like 1400 bytes. Also, this problem has been discussed on this list quite extensively a couple of weeks ago. There is a small daemon to run on your FreeBSD gateway that will go around the problem. Look for threads called '"frag-anyways" knob' and '[CFV] where to put the TCP MSS correction code'. The daemon is called "tcpmssd" and works like natd. Patrick To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message