Date: Sun, 26 Apr 2009 07:47:09 +0100 From: Matthew Seaman <m.seaman@infracaninophile.co.uk> To: Reinis Ivanovs <dabas@untu.ms> Cc: freebsd-questions@freebsd.org Subject: Re: Long HTTP connection delays in LAN Message-ID: <49F4036D.7040203@infracaninophile.co.uk> In-Reply-To: <5b826e210904251603j63776c21kb208e05871ceb8f@mail.gmail.com> References: <5b826e210904251603j63776c21kb208e05871ceb8f@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
This is an OpenPGP/MIME signed message (RFC 2440 and 3156)
--------------enig01FF591B2196085597A01485
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: quoted-printable
Reinis Ivanovs wrote:
> Hello,
>=20
> I have a strange HTTP connectivity problem in my LAN. There is a
> FreeBSD 7.1 system that runs the httpd, a Vista system that I use to
> connect to it, and a Tomato 1.23 WRT54GL router between them. It often
> occurs that I can ping the FreeBSD system just fine, but HTTP
> connections get "stuck" for minutes on end. After they become
> "unstuck", everything works normally for a while, and then the problem
> might come back. I know the httpd is running fine during those times
> because there are no delays connecting locally or from outside the
> LAN. It seems I also get similar delays when I try to connect to the
> router's web administration panel. There are so many variables that
> I'm not sure whether the problem lies with FreeBSD or something else.
> I'm hoping somebody with more networking experience could give me some
> hints about where to look, because I'm seriously stuck.
This sounds suspiciously like MTU problems. ie. one of those machines
is occasionally sending packets too big for the other side to cope with
*and* PathMTU discovery is not working.
However, I can't see why that should be an issue with two machines and a
router all directly connected via ethernet: the standard MTU of 1500 byte=
s
is almost certainly correct in that case.
MTU problems usually occur when you tunnel one protocol through another
(which includes such things as IPSec) or when you convert from ethernet
to some other wire protocol, such as PPP. In any case, there should be
an automatic mechanism to enable the MTU to be adjusted dynamically --
firewalling out all ICMP traffic (which is the not the latest bit of=20
bogus security lore but merely the most intractable and stupid) will
lead to effects like that.
Cheers,
Matthew
--=20
Dr Matthew J Seaman MA, D.Phil. 7 Priory Courtyard
Flat 3
PGP: http://www.infracaninophile.co.uk/pgpkey Ramsgate
Kent, CT11 9PW
--------------enig01FF591B2196085597A01485
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: OpenPGP digital signature
Content-Disposition: attachment; filename="signature.asc"
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.11 (FreeBSD)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iEYEAREIAAYFAkn0A3MACgkQ8Mjk52CukIxFcgCdH3ohUKnDJQX735d8RdTVCNPL
z3YAn3dt34cLYrz+6lGMwtft5Yoj97+r
=P7bG
-----END PGP SIGNATURE-----
--------------enig01FF591B2196085597A01485--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?49F4036D.7040203>