hi swinog members
we have the need to rollout a pppoe setup on our dsl colocations where static ip with mtu 1500 is actually in place.
as i know many postings around the world regarding pppoe mtu problems and advices to customers to reduce mtu on their clients down to 1492, i wanted to ask for a feedback from you if you all have pppoe with 1500 (=1492) in place or someone uses pppoe with 1508 from cpe to pppoe-server? if you use 1500: are the mentioned problems with websites (eg: gmx) or ipsec setups still an issue ?
thanx and best regards from austria to our neighbors bernd spiess / happynet.at / i3b.at
Hello Bernd
Spiess Bernd wrote:
as i know many postings around the world regarding pppoe mtu problems and advices to customers to reduce mtu on their clients down to 1492, i wanted
The problems with MTU 1492 could be on other places, eg. if a web server admin decides to filter ICMP on his server which will prevent Path MTU Discovery to work. For example this can have the effect, that from a website (hosted on a server which does not get the ICMP messages) the HTML part arrived (smaller then 1500 bytes), but the corresponding pictrures do not. I did once write a paper about the ADSL MTU problem, see "Swiss ADSL with PPPoA (and MTU 1500)" [1] for more informations.
[1] http://www.wenks.ch/fabian/ADSL-PPPoA.html
I hope for you, that ADSL with PPPoA will also work in Austria.
bye Fabian
thanx for the suggestions - the mtu path discovery problem was the reason why i asked.
fyi: here in austria we have own access to the copper from "telekom austria" (colocation/"unbundling") we have our own dslam´s and our own selection of cpe´s - so we can build or configure whatever we like. actually we use static ip on a switched layer 2 vlan-trunk environment. if possible we want to avoid PPPoA because we are no atm people.
as i understand you correct mtu 1492 under PPPoE is still an issue in the mentioned cases.
has anyone tried to build PPPoE with an MTU 1508 infrastructure ?
bernd
-----Original Message----- From: swinog-bounces@lists.swinog.ch [mailto:swinog-bounces@lists.swinog.ch] On Behalf Of Fabian Wenk Sent: Tuesday, June 12, 2007 12:52 PM To: swinog@swinog.ch Subject: [Spam] Re: [swinog] feedback on pppoe needed
Hello Bernd
Spiess Bernd wrote:
as i know many postings around the world regarding pppoe mtu problems and advices to customers to reduce mtu on their clients down to 1492, i wanted
The problems with MTU 1492 could be on other places, eg. if a web server admin decides to filter ICMP on his server which will prevent Path MTU Discovery to work. For example this can have the effect, that from a website (hosted on a server which does not get the ICMP messages) the HTML part arrived (smaller then 1500 bytes), but the corresponding pictrures do not. I did once write a paper about the ADSL MTU problem, see "Swiss ADSL with PPPoA (and MTU 1500)" [1] for more informations.
[1] http://www.wenks.ch/fabian/ADSL-PPPoA.html
I hope for you, that ADSL with PPPoA will also work in Austria.
bye Fabian _______________________________________________ swinog mailing list swinog@lists.swinog.ch http://lists.swinog.ch/cgi-bin/mailman/listinfo/swinog
PPPoE (over Ethernet) ---> Ethernet max 1500 But I'm very curious if there are some non standards drafts over ethernet for such kind of applications ?
Chris
"Spiess Bernd" Bernd.Spiess@happynet.at 12.06.2007 18:00 >>>
thanx for the suggestions - the mtu path discovery problem was the reason why i asked.
fyi: here in austria we have own access to the copper from "telekom austria" (colocation/"unbundling") we have our own dslaḿs and our own selection of cpés - so we can build or configure whatever we like. actually we use static ip on a switched layer 2 vlan-trunk environment. if possible we want to avoid PPPoA because we are no atm people.
as i understand you correct mtu 1492 under PPPoE is still an issue in the mentioned cases.
has anyone tried to build PPPoE with an MTU 1508 infrastructure ?
bernd
-----Original Message----- From: swinog-bounces@lists.swinog.ch [mailto:swinog-bounces@lists.swinog.ch] On Behalf Of Fabian Wenk Sent: Tuesday, June 12, 2007 12:52 PM To: swinog@swinog.ch Subject: [Spam] Re: [swinog] feedback on pppoe needed
Hello Bernd
Spiess Bernd wrote:
as i know many postings around the world regarding pppoe mtu problems and advices to customers to reduce mtu on their clients down to 1492, i wanted
The problems with MTU 1492 could be on other places, eg. if a web server admin decides to filter ICMP on his server which will prevent Path MTU Discovery to work. For example this can have the effect, that from a website (hosted on a server which does not get the ICMP messages) the HTML part arrived (smaller then 1500 bytes), but the corresponding pictrures do not. I did once write a paper about the ADSL MTU problem, see "Swiss ADSL with PPPoA (and MTU 1500)" [1] for more informations.
[1] http://www.wenks.ch/fabian/ADSL-PPPoA.html
I hope for you, that ADSL with PPPoA will also work in Austria.
bye Fabian _______________________________________________ swinog mailing list swinog@lists.swinog.ch http://lists.swinog.ch/cgi-bin/mailman/listinfo/swinog _______________________________________________ swinog mailing list swinog@lists.swinog.ch http://lists.swinog.ch/cgi-bin/mailman/listinfo/swinog
Why non standard? Gigabit Ethernet supports jumbo frames.....only Ethernet and Fastethernet have this limitation..
-----Original Message----- From: swinog-bounces@lists.swinog.ch [mailto:swinog-bounces@lists.swinog.ch] On Behalf Of Christian Jouas Sent: Wednesday, June 13, 2007 11:30 AM To: swinog@swinog.ch Subject: Re: [swinog] feedback on pppoe needed
PPPoE (over Ethernet) ---> Ethernet max 1500 But I'm very curious if there are some non standards drafts over ethernet for such kind of applications ?
Chris
I was thinking about the cheap CPE side, perhaps the next generation of CPE's with Giga ports will solve this issue ? ;-)
Christian.Kuster@swisscom.com 13.06.2007 11:40 >>>
Why non standard? Gigabit Ethernet supports jumbo frames.....only Ethernet and Fastethernet have this limitation..
-----Original Message----- From: swinog-bounces@lists.swinog.ch [mailto:swinog-bounces@lists.swinog.ch] On Behalf Of Christian Jouas Sent: Wednesday, June 13, 2007 11:30 AM To: swinog@swinog.ch Subject: Re: [swinog] feedback on pppoe needed
PPPoE (over Ethernet) ---> Ethernet max 1500 But I'm very curious if there are some non standards drafts over ethernet for such kind of applications ?
Chris
_______________________________________________ swinog mailing list swinog@lists.swinog.ch http://lists.swinog.ch/cgi-bin/mailman/listinfo/swinog
Hello Christian
Christian Jouas wrote:
I was thinking about the cheap CPE side, perhaps the next generation of CPE's with Giga ports will solve this issue ? ;-)
Larger frames are only need on the DSL side of the CPE, so I guess this does not depend on the capability of the Ethernet interface.
bye Fabian
Hi all,
We just had a case where we missed some mails from a vendor, and those mails now have arrived with three month delay. After some investigation we found the reason for the delay: the vendor is using Exchange 2003 SP2, which has a known, still unfixed bug. It causes outbound mail to domains that implement greylisting to be jailed in a black hole until the SMTP service is restarted.
If you are having an issue with greylisting, please review the problem description below. Should your problem match the description below and the workaround works for you, Microsoft has advised me to ask you to raise a support call with them. When you raise your support call, please ask that they link the call to the EMEA case SRZ060302000872. This way, should a number of customers be seeing the problem, it can be tracked within Microsoft.
SYMPTOMS =========
When Exchange tries to send mails to certain domains that implement "greylisting", the mails fail to get delivered, without any intimation to the sender on the first attempt. Thereafter on either restarting the server or SMTP service, the mails get delivered to the destination domains. At times, NDRs for these delayed mails are also generated after rebooting.
PROBLEM ========
The issue is intermittent and occurs only when the destination domains have greylisting implemented and mail is sent to the greylisted domain the very first time.
WORKAROUNDS ===========
1. Write a script to restart the SMTP service at least once a day. 2. Modify the registry on the sender Exchange server, to change the Glitch Retry key. 3. Clarify that there is no 3rd party AV software in the environment which could be causing the issue.
-- Martin
Martin Blapp, mb@imp.ch mbr@FreeBSD.org ------------------------------------------------------------------ ImproWare AG, UNIXSP & ISP, Zurlindenstrasse 29, 4133 Pratteln, CH Phone: +41 61 826 93 00 Fax: +41 61 826 93 01 PGP: <finger -l mbr@freebsd.org> PGP Fingerprint: B434 53FC C87C FE7B 0A18 B84C 8686 EF22 D300 551E ------------------------------------------------------------------
WORKAROUNDS
- Write a script to restart the SMTP service at least once a day.
- Modify the registry on the sender Exchange server, to change the Glitch Retry key.
- Clarify that there is no 3rd party AV software in the environment which could be causing the issue.
4. remove MS Exchange as its unable to fulfill internet capabilities.
Martin Blapp wrote:
We just had a case where we missed some mails from a vendor, and those mails now have arrived with three month delay. After some investigation we found the reason for the delay: the vendor is using Exchange 2003 SP2, which has a known, still unfixed bug. It causes outbound mail to domains that implement greylisting to be jailed in a black hole until the SMTP service is restarted.
I can't believe that even Exchange would be unable to do a retry - there are plenty of situations where a server might return a temporary 45x error.
Hi,
I can't believe that even Exchange would be unable to do a retry - there are plenty of situations where a server might return a temporary 45x error.
The error isn't easy to reproduce. It seems that some conditions are necessary. It might be a race condition.
Exchange never managed it to 100% comply with the existing RFCs. That hasn't changed at all. And it still looks like Microsoft doesn't handle bugs seriously if only a small to average userbase is affected. This bug has only made it up to the second level support of Microsoft.
-- Martin
Am Donnerstag, den 21.06.2007, 09:49 +0200 schrieb Martin Blapp:
Exchange never managed it to 100% comply with the existing RFCs. That hasn't changed at all. And it still looks like Microsoft doesn't handle bugs seriously if only a small to average userbase is affected. This bug has only made it up to the second level support of Microsoft.
I think, proposal #4 should work for all ;)
If you have crappy software, remove it.
Martin Blapp wrote:
Hi,
I can't believe that even Exchange would be unable to do a retry - there are plenty of situations where a server might return a temporary 45x error.
The error isn't easy to reproduce. It seems that some conditions are necessary. It might be a race condition.
Exchange never managed it to 100% comply with the existing RFCs.
That I can easily believe, but it just seems incredible that it wouldn't be able to deal with a retry. Which is why I doubt it should somehow be related to greylisting.
For a moment I thought we were talking about mailservers, but then I realized it's about exchange...
-----Original Message----- From: swinog-bounces@lists.swinog.ch [mailto:swinog-bounces@lists.swinog.ch] On Behalf Of Per Jessen Sent: Thursday, June 21, 2007 2:13 PM To: swinog@lists.swinog.ch Subject: Re: [swinog] Nice to know for ISPs: Exchange 2003 SP2 Greylisting bug
Martin Blapp wrote:
Hi,
I can't believe that even Exchange would be unable to do a retry - there are plenty of situations where a server might return a temporary 45x error.
The error isn't easy to reproduce. It seems that some conditions are necessary. It might be a race condition.
Exchange never managed it to 100% comply with the existing RFCs.
That I can easily believe, but it just seems incredible that it wouldn't be able to deal with a retry. Which is why I doubt it should somehow be related to greylisting.
-- /Per Jessen, Zürich
_______________________________________________ swinog mailing list swinog@lists.swinog.ch http://lists.swinog.ch/cgi-bin/mailman/listinfo/swinog
This e-mail, any associated files and the information contained in them are confidential and is intended for the addressee(s) only. If you have received this message in error please notify the originator and delete the email immediately. The unauthorised use, disclosure, copying or alteration of this message is strictly forbidden. E-mails to and from the company are monitored for operational reasons and in accordance with lawful business practices. Any opinions expressed are those of the individual and do not necessarily represent the views of the company. The company does not conclude contracts by email and all negotiations are subject to contract. We make every effort to maintain our network free from computer viruses but accept no responsibility for any viruses which might be transferred by this e-mail.
Chris,
http://mirror.switch.ch/rfc/4638.txt describes exactly the discussed topic.
btw it also states that no current IEEE standard supports the use of "jumbo frames" altough these are widely used in various network scenarios.
stefan
-----Original Message----- From: swinog-bounces@lists.swinog.ch [mailto:swinog-bounces@lists.swinog.ch] On Behalf Of Christian Jouas Sent: Wednesday, June 13, 2007 11:30 AM To: swinog@swinog.ch Subject: Re: [swinog] feedback on pppoe needed
PPPoE (over Ethernet) ---> Ethernet max 1500 But I'm very curious if there are some non standards drafts over ethernet for such kind of applications ?
Chris
"Spiess Bernd" Bernd.Spiess@happynet.at 12.06.2007 18:00 >>>
thanx for the suggestions - the mtu path discovery problem was the reason why i asked.
fyi: here in austria we have own access to the copper from "telekom austria" (colocation/"unbundling") we have our own dslaḿs and our own selection of cpés - so we can build or configure whatever we like. actually we use static ip on a switched layer 2 vlan-trunk environment. if possible we want to avoid PPPoA because we are no atm people.
as i understand you correct mtu 1492 under PPPoE is still an issue in the mentioned cases.
has anyone tried to build PPPoE with an MTU 1508 infrastructure ?
bernd
-----Original Message----- From: swinog-bounces@lists.swinog.ch [mailto:swinog-bounces@lists.swinog.ch] On Behalf Of Fabian Wenk Sent: Tuesday, June 12, 2007 12:52 PM To: swinog@swinog.ch Subject: [Spam] Re: [swinog] feedback on pppoe needed
Hello Bernd
Spiess Bernd wrote:
as i know many postings around the world regarding pppoe mtu problems and advices to customers to reduce mtu on their clients down to 1492, i wanted
The problems with MTU 1492 could be on other places, eg. if a web server admin decides to filter ICMP on his server which will prevent Path MTU Discovery to work. For example this can have the effect, that from a website (hosted on a server which does not get the ICMP messages) the HTML part arrived (smaller then 1500 bytes), but the corresponding pictrures do not. I did once write a paper about the ADSL MTU problem, see "Swiss ADSL with PPPoA (and MTU 1500)" [1] for more informations.
[1] http://www.wenks.ch/fabian/ADSL-PPPoA.html
I hope for you, that ADSL with PPPoA will also work in Austria.
bye Fabian _______________________________________________ swinog mailing list swinog@lists.swinog.ch http://lists.swinog.ch/cgi-bin/mailman/listinfo/swinog _______________________________________________ swinog mailing list swinog@lists.swinog.ch http://lists.swinog.ch/cgi-bin/mailman/listinfo/swinog _______________________________________________ swinog mailing list swinog@lists.swinog.ch http://lists.swinog.ch/cgi-bin/mailman/listinfo/swinog
Hello Christian and Bernd
Christian Jouas wrote:
PPPoE (over Ethernet) ---> Ethernet max 1500 But I'm very curious if there are some non standards drafts over ethernet for such kind of applications ?
I guess, that MTU higher then 1500 over Ethernet should not be a problem, switches which support IEEE 802.1Q VLANs also do this. But according to the FreeBSD VLAN(4) manpage not every NIC does support it.
"Spiess Bernd" Bernd.Spiess@happynet.at 12.06.2007 18:00 >>>
as i understand you correct mtu 1492 under PPPoE is still an issue in the mentioned cases.
Yes its is.
has anyone tried to build PPPoE with an MTU 1508 infrastructure ?
I do not know, as I know the ADSL infrastructure only from the end user side.
bye Fabian
Hoi Fabian,
Am 12.6.2007 12:52 Uhr, Fabian Wenk schrieb:
as i know many postings around the world regarding pppoe mtu problems and advices to customers to reduce mtu on their clients down to 1492, i wanted
The problems with MTU 1492 could be on other places, eg. if a web server admin decides to filter ICMP on his server which will prevent Path MTU Discovery to work. For example this can have the effect, that from a website (hosted on a server which does not get the ICMP messages) the HTML part arrived (smaller then 1500 bytes), but the corresponding pictrures do not. I did once write a paper about the ADSL MTU problem, see "Swiss ADSL with PPPoA (and MTU 1500)" [1] for more informations.
[1] http://www.wenks.ch/fabian/ADSL-PPPoA.html
I hope for you, that ADSL with PPPoA will also work in Austria.
Ist es möglich den 642R auch als Bridge zu konfigurieren um PPPoA zu benutzen?
PS: Was ist denn tracepath für ein Tool?
Ihsan
Oups, this shouldn't go the mailinglist. Sorry guys.
Am 23.7.2007 13:30 Uhr, Ihsan Dogan schrieb:
Hoi Fabian,
Am 12.6.2007 12:52 Uhr, Fabian Wenk schrieb:
as i know many postings around the world regarding pppoe mtu problems and advices to customers to reduce mtu on their clients down to 1492, i wanted
The problems with MTU 1492 could be on other places, eg. if a web server admin decides to filter ICMP on his server which will prevent Path MTU Discovery to work. For example this can have the effect, that from a website (hosted on a server which does not get the ICMP messages) the HTML part arrived (smaller then 1500 bytes), but the corresponding pictrures do not. I did once write a paper about the ADSL MTU problem, see "Swiss ADSL with PPPoA (and MTU 1500)" [1] for more informations.
[1] http://www.wenks.ch/fabian/ADSL-PPPoA.html
I hope for you, that ADSL with PPPoA will also work in Austria.
Ist es möglich den 642R auch als Bridge zu konfigurieren um PPPoA zu benutzen?
PS: Was ist denn tracepath für ein Tool?
Ihsan
why dont you use pppoa? there you get (mostly?) 1500.
-steven
-----Original Message----- From: swinog-bounces@lists.swinog.ch [mailto:swinog-bounces@lists.swinog.ch] On Behalf Of Spiess Bernd Sent: Tuesday, June 12, 2007 8:45 AM To: swinog@lists.swinog.ch Subject: [swinog] feedback on pppoe needed
hi swinog members
we have the need to rollout a pppoe setup on our dsl colocations where static ip with mtu 1500 is actually in place.
as i know many postings around the world regarding pppoe mtu problems and advices to customers to reduce mtu on their clients down to 1492, i wanted to ask for a feedback from you if you all have pppoe with 1500 (=1492) in place or someone uses pppoe with 1508 from cpe to pppoe-server? if you use 1500: are the mentioned problems with websites (eg: gmx) or ipsec setups still an issue ?
thanx and best regards from austria to our neighbors bernd spiess / happynet.at / i3b.at _______________________________________________ swinog mailing list swinog@lists.swinog.ch http://lists.swinog.ch/cgi-bin/mailman/listinfo/swinog
There is no PPPoA in Austria AFIAK - aside from some other strange specific things and issues...
We are lucky in Switzerland (or say by Swisscom mistake?) to have PPPoA support - indeed.
-Kurt.
-----Original Message----- From: swinog-bounces@lists.swinog.ch [mailto:swinog-bounces@lists.swinog.ch] On Behalf Of Steven.Glogger@swisscom.com Sent: Tuesday, June 12, 2007 12:54 PM To: swinog@swinog.ch Subject: RE: [swinog] feedback on pppoe needed
why dont you use pppoa? there you get (mostly?) 1500.
-steven
-----Original Message----- From: swinog-bounces@lists.swinog.ch [mailto:swinog-bounces@lists.swinog.ch] On Behalf Of Spiess Bernd Sent: Tuesday, June 12, 2007 8:45 AM To: swinog@lists.swinog.ch Subject: [swinog] feedback on pppoe needed
hi swinog members
we have the need to rollout a pppoe setup on our dsl colocations where static ip with mtu 1500 is actually in place.
as i know many postings around the world regarding pppoe mtu problems and advices to customers to reduce mtu on their clients down to 1492, i wanted to ask for a feedback from you if you all have pppoe with 1500 (=1492) in place or someone uses pppoe with 1508 from cpe to pppoe-server? if you use 1500: are the mentioned problems with websites (eg: gmx) or ipsec setups still an issue ?
thanx and best regards from austria to our neighbors bernd spiess / happynet.at / i3b.at _______________________________________________ swinog mailing list swinog@lists.swinog.ch http://lists.swinog.ch/cgi-bin/mailman/listinfo/swinog _______________________________________________ swinog mailing list swinog@lists.swinog.ch http://lists.swinog.ch/cgi-bin/mailman/listinfo/swinog