Bug Reports

m0n0wall 1.32 installed on a watchguard firebox x500.
site to site works perfectly to two different sites.

My problem is with the mobile client vpn.
Using shrew soft vpn ver 2.1.7 I am able to establish a tunnel.
Via the vpn I can browse to the m0n0wall gui and make changes, there are no problems.

I can ssh to a server behind the m0n0wall via the vpn and can log in.

As long as what I type results in a small amount of data coming back, I do not have any problems.
However when I do any sort of ls or list of anything that results in larger data transmission it immediately freezes and this happens every time. I do not see any of that data coming back, only the echo of the command I typed. I can reconnect another session but the session that froze will not unfreeze and cannot be interrupted.

My only attempt to resolve the problem has been this:
1. On the m0n0wall under Advanced, in Firewall section, I enabled Allow fragmented IPSec packets.
2. In the shrew soft vpn, under client firewall options I enabled IKE fragmentation and lowed the Maximum packet size from 540 bytes to 400 bytes.
Nothing changed.

The laptop I'm trying this from has Windows Vista on it.
Not sure if related but the webGUI freezes from time to time when I'm making changes in certain areas such as IPSec or NAT. This is not consistent and usually frees up with a refresh after about 20 seconds. There are plenty of times it breezes through those pages and other times it seems to get lots of freezes. The internet speed has shown no slowdown though. Its remained consistently fast from 15m-20m.
Thanks for any help you can give.

What is the CPU utilization of m0n0wall, both when the box is sitting idle and when you're VPN'd in?

between 0 - 5%, mostly around 2%

For the most part, forum user only post in the Bug Report forum after they have done their best to confirmed an actual bug not to get help with a problem that might turn out to be a bug.

Roy...

what you are describing sounds like an MTU problem.

you have set a lower MTU on the client, but it's the return packets causing you a problem.  try setting a lower WAN MTU

@Roy, if I've misused the forum, I apologize. moderators feel free to move it.
The sonicwall I'm trying to replace did not behave like this. Do you believe this is a configuration problem and not a bug? Does this have more to do with the hardware I'm using rather than the software?

@brushedmoss, thanks for the suggestion.
 
I deeply appreciate having m0n0wall as an option to replace SW. Thankyou to all contributors.

bfrank,

the m0n0wall coders work really hard to provide us with the best product possible.  so before reporting something as a bug, we really need to do our best to make sure we have eliminated  everything else as the possible problem.

also, I would agree with brushedmoss.  sounds like an MTU issue or possible a hardware issue.

good luck,

Roy...