Outgoing traffic blocked after few KB...

Started by thierryB, December 08, 2023, 06:02:05 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
December 08, 2023, 06:02:05 PM
Hi,

I'm having a problem with the firewall. It blocks outgoing traffic after a few KB. Example: I send a file to a remote server and it blocks after around 500KB. The connection is timed out. In the direct firewall log view, I have no error (I activated the 'conservative' parameter in 'FW optimization') but in the console I have this message which repeats:
Quotepf : loose state match: TCP out uire: xx.xx.xx.xx:443 192.168.1.32:62382 stack:
- [10=4198815723 high=4198B11214 oin=1B26 modulator=B1 [lo=a high=1B26 uin=l no
dulator=B] R seq=4198B15722 (4198815722) ack=a len=l ackskeu=a dir
=out , ftJd

if I disable fw it works.

So there is definitely a problem with the FW rules.

I installed a new live CD installation without changing any settings except the 'fw optimization' to 'conservative'. And it's the same thing. So the problem is an original setting that I haven't been able to identify.

Can you help me please?

Thank you
February 17, 2024, 08:27:08 PM #1
Are you still experiencing this problem?

I'm having something similar crop up with pf: loose state and pf: bad state messages appearing in /var/log/system/latest.log.

If you're still around & dealing with this, let's compare notes further. Are there any wireless links in the network path between the router & remote device? (In my case the path is  Router --> VLAN-enabled ethernet switch --> WAP (running OpenWRT) --> Mac laptop.)
February 18, 2024, 10:25:42 PM #2
Quote from: thierryB on December 08, 2023, 06:02:05 PM
Hi,

I'm having a problem with the firewall. It blocks outgoing traffic after a few KB. Example: I send a file to a remote server and it blocks after around 500KB. The connection is timed out. In the direct firewall log view, I have no error (I activated the 'conservative' parameter in 'FW optimization') but in the console I have this message which repeats:
Quotepf : loose state match: TCP out uire: xx.xx.xx.xx:443 192.168.1.32:62382 stack:
- [10=4198815723 high=4198B11214 oin=1B26 modulator=B1 [lo=a high=1B26 uin=l no
dulator=B] R seq=4198B15722 (4198815722) ack=a len=l ackskeu=a dir
=out , ftJd

if I disable fw it works.

So there is definitely a problem with the FW rules.

I installed a new live CD installation without changing any settings except the 'fw optimization' to 'conservative'. And it's the same thing. So the problem is an original setting that I haven't been able to identify.

Can you help me please?

Thank you

I'm a bit unclear as to your settings.  Why didn't you test with the default Firewall Optimization?  Are you uploading to the same server every time?  What are you using to perform the upload?
Print
Go Up Pages1
User actions