From owner-freebsd-stable  Wed May 16  8:25:23 2001
Delivered-To: freebsd-stable@freebsd.org
Received: from gndrsh.dnsmgr.net (GndRsh.dnsmgr.net [198.145.92.4])
	by hub.freebsd.org (Postfix) with ESMTP id B81F537B422
	for <freebsd-stable@FreeBSD.ORG>; Wed, 16 May 2001 08:25:18 -0700 (PDT)
	(envelope-from freebsd@gndrsh.dnsmgr.net)
Received: (from freebsd@localhost)
	by gndrsh.dnsmgr.net (8.9.3/8.9.3) id IAA09781;
	Wed, 16 May 2001 08:25:16 -0700 (PDT)
	(envelope-from freebsd)
From: "Rodney W. Grimes" <freebsd@gndrsh.dnsmgr.net>
Message-Id: <200105161525.IAA09781@gndrsh.dnsmgr.net>
Subject: Re: ppp problems on 4.3-RELEASE and PPPoE
In-Reply-To: <200105161519.IAA09749@gndrsh.dnsmgr.net> from "Rodney W. Grimes" at "May 16, 2001 08:19:27 am"
To: freebsd@gndrsh.dnsmgr.net (Rodney W. Grimes)
Date: Wed, 16 May 2001 08:25:15 -0700 (PDT)
Cc: jim@thehousleys.net (James Housley), freebsd-stable@FreeBSD.ORG
X-Mailer: ELM [version 2.4ME+ PL54 (25)]
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-stable@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

Arghhh... I just noticed something else that could be it... your using
RFC1918 10.x.x.x addresses, well, depending on what your using for NAT
software it may or may not be doing the right thing with ICMP packets,
to correctly NAT an icmp type 3 packet you have to reach inside the
data portion and munge the IP address of the original packet that
caused the error, otherwise the host it is sent to is going to chuck
it because it has not opened any sockets to 10.x.x.x.


> Someplace along the network path between the client and server someone
> is probably blocking icmp packets, and thus causing path MTU discovery
> to fail.
> 
> You have a non standard MTU of 1492 on your PPP link, and without the
> ICMP type 3, code 4 packets getting through the windblows box is going
> to use an MTU of 1500.
> 
> Good luck in finding the person dropping ICMP type 3 packets in your
> path, unless it happens to be you....
> 
> > I have been having problems with the the newer Windows machines, 2000 &
> > Me, not being able to access some websites.  I have had to manually edit
> > the registry to change the MTU.  This should not be needed, because I am
> > running 4.3-RELEASE which has had the tcpmssfixup feature for a while. 
> > It is enabled.  Unfortunately this maching is in an office in Canada,
> > and I am not in Canada.  I am using natd and ipfw for NAT and the
> > firewall.  The link has a static IP if it matters.  Below I am attaching
> > ppp.conf.  I have watched some of the data with tcpdump on both tun0 and
> > ed0, but I am not sure what to look for.
> > 
> > Suggestion on how to proceed.
> > 
> > Jim
> > 
> > ---- ppp.conf ----
> > default:
> >  ident user-ppp VERSION (built COMPILATIONDATE)
> > 
> >  # Ensure that "device" references the correct serial port
> >  # for your modem. (cuaa0 = COM1, cuaa1 = COM2)
> >  #
> >  set device /dev/cuaa1
> > 
> >  set log Phase Chat LCP IPCP CCP tun command
> >  set speed 115200
> >  set dial "ABORT BUSY ABORT NO\\sCARRIER TIMEOUT 5 \
> >            \"\" AT OK-AT-OK ATE1Q0 OK \\dATDT\\T TIMEOUT 40 CONNECT"
> >  set ifaddr 10.0.0.1/0 10.0.0.2/0 255.255.255.0 0.0.0.0
> >  set timeout 180                        # 3 minute idle timer (the
> > default)
> >  add default HISADDR                    # Add a (sticky) default route
> >  enable dns                             # request DNS info (for
> > resolv.conf)
> > 
> > magma:
> >  ident
> >  set device PPPoE:ed0
> >  set MRU 1492
> >  set MTU 1492
> >  set authname **************
> >  set authkey *******
> >  set log Phase Chat Connect
> >  set dial
> >  set login
> >  set ifaddr 10.0.0.1/0 10.0.0.2/0 0.0.0.0/0 0.0.0.0/0
> >  set timeout 0
> >  set server +3000 *******
> >  enable tcpmssfixup
> >  disable dns
> >  set cd 5
> >  set crtscts off
> >  enable pap
> >  disable pred1
> > 
> > ------------------
> > -- 
> > /"\   ASCII Ribbon Campaign  .
> > \ / - NO HTML/RTF in e-mail  .
> >  X  - NO Word docs in e-mail .
> > / \ -----------------------------------------------------------------
> > jeh@FreeBSD.org      http://www.FreeBSD.org     The Power to Serve
> > jim@TheHousleys.Net  http://www.TheHousleys.net
> > ---------------------------------------------------------------------
> > The wise man built his network upon Un*x.
> >     The foolish man built his network upon Windows.
> > 
> > To Unsubscribe: send mail to majordomo@FreeBSD.org
> > with "unsubscribe freebsd-stable" in the body of the message
> > 
> 
> 
> -- 
> Rod Grimes - KD7CAX @ CN85sl - (RWG25)               rgrimes@gndrsh.dnsmgr.net
> 
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-stable" in the body of the message
> 


-- 
Rod Grimes - KD7CAX @ CN85sl - (RWG25)               rgrimes@gndrsh.dnsmgr.net

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-stable" in the body of the message