Hello,
I have a router with a PPPoE server, and some PPPoE clients connected to it.
I have problems when one user try to communicate with another one on the same router.
I tried to replicate this by trying to open an http page from one user to another users’ IP address.
Users can ping each other, but there’s something wrong as all services doesn’t work good.
For example, if one PPPoE client has a VPN server, and another one want to connect to it, it can’t and fail with a timeout. If one PPPoE client wants to load an HTTP page from another PPPoE client, it doesn’t work.
This is from a packet sniffing:
This is an issue on all our router and all PPPoE clients, so I think there’s something wrong in our configuration or in RouterOS.
If two users are on different PPPoE servers (on other routers), the same configuration works correctly.
It seems like an MTU thing… But can’t understand why.
I have this on the router:
/ip firewall mangle
add action=change-mss chain=forward new-mss=1452 out-interface=all-ppp \
passthrough=yes protocol=tcp tcp-flags=syn tcp-mss=1453-65535
add action=change-mss chain=forward in-interface=all-ppp new-mss=1452 \
passthrough=yes protocol=tcp tcp-flags=syn tcp-mss=1453-65535
/interface bridge
add name=pppoe_server
/interface pppoe-server server
add authentication=chap,mschap1,mschap2 default-profile=PPPoE_prof disabled=no \
interface=pppoe_server max-mru=1492 max-mtu=1492 one-session-per-host=\
yes service-name=PPPOE
/ppp profile
add local-address=10.x.x.1 name=PPPoE_prof remote-address=PPPoE_pool
/ip pool
add name=PPPoE_pool ranges=10.x.x.2-10.x.x.254
/ip firewall nat
add action=src-nat chain=srcnat src-address=10.x.x.0/24 to-addresses=x.x.x.x
Any idea?
All other services are working good…