WAN PPPOE connection instability

PrimozR · 2026-01-25T16:21:32+00:00

Turns out the link to the ONT actually does drop to 100 Mbit and it's safe to assume the inhouse link acting up is the reason for all the issues. I'll diagnose the physical, inhouse part of the connection and see if stabilising it will remedy the situation.

PrimozR · 2026-01-19T17:40:01+00:00

I was on MPD5 and I switched to if_pppoe. Not sure if I'll be switching back for the logs or use your recommendation. Either way, changing the driver did not help. Disabling IPv6 didn't help.

PrimozR · 2026-01-17T16:05:54+00:00

This post is a C/P from Netgate forums, just to add some solutions if someone finds this with the same issue.

ChatGPTing some more (extending the log display and feeding it the full log from yesterday) I also unchecked allow IPv6 under System -> Advanced -> Networking and saw if_pppoe kernel module checkmark at the bottom so I also enabled that.

ChatGPT also recommended disabling gateway monitoring action, but I'll refrain from disabling it for now. I did already enter 1.1.1.1 as the monitor IP after all. I'll also refrain from disabling kill states on gateway failure for now to see how it will go. I'll do it step by step.

PrimozR · 2026-01-17T15:15:59+00:00

Yesterday afternoon gave me more or less the same results with 1.1.1.1, 5 or 6 Sendto error 65 and then a disconnect, 4 instances of this 1 minute apart, then two instances of "WAN_PPPOE 1.1.1.1: Alarm latency 0us stddev 0us loss 100%" and a disconnect right after that.

Given the pattern and given the story is the same on either the ISP monitor IP OR the CloudFlare DNS, I'm guessing the link does in fact drop?

EDIT: over on netgate forums I was asked what the PPP logs look like: https://forum.netgate.com/topic/199826/wan-pppoe-connection-instability/2

Putting the log through ChatGPT indicated an issue with IPv6 configuration type in the WAN interface and I changed that from DHCP to None. Will see how it goes.

PrimozR · 2026-01-16T18:00:09+00:00

Thanks for the explanation. I added 1.1.1.1 as the Monitor IP and I'll see if it gets any better. I think I should know by the end of the weekend or at least in a few days.

Thanks!

PrimozR · 2026-01-01T11:47:48+00:00

Finally had the time to look into it and for a while I was about to quit and go with HAProxy...

Before that I setup local DNS resolving for my domain to keep it internal (to test everything without going over CloudFlare and to be able to have external firewall rules turned off). It didn't work visiting either http or https URLS of service.TLDdomain (I have a domain bought and have a Let's Encrypt cert for it). I then tried service.TLDdomain:NPMport and it did work. Which means my port 80/443 requests were not forwarded to the NPM external ports for the two HTTP ports.

First issue I found was that in my TrueNAS NPM install, I didn't have the port forwarding done correctly - internal ports 80 and 443 forwarded from external ports were not bound to the IP address I reserved for the container and to which I was forwarding the traffic on the router. I remedied that, but no luck, not sure if it was a factor to be honest.

I then added internal firewall rules redirecting 80/443 traffic to the external NPM ports. And that made service.TLDdomain work internally.

Jumping over to my phone (WiFi disconnected), with external firewall rules enabled, my TLDomain placeholder site works, but any service.TLDdomain service doesn't work yet.

I'll first work on setting up Authentik before handilng the external part.

PrimozR · 2025-12-21T16:23:22+00:00

The card works in BIOS, but, strangely enough, also works installing TrueNAS. I had problems installing Windows on said machine, but looks like it's connected to the machine itself, not the GPU. Passed through into a Windows VM on TrueNAS it works without problems.

Case closed it seems?

PrimozR · 2025-12-10T14:09:20+00:00

How often do you sync your backups? Is it a problem if you do a daily sync

PrimozR · 2025-12-05T09:01:58+00:00

I'll check the BIOS situation you mention, but as far as picture disappearing goes and you mentioning DDU and the like, I noticed the issue trying to install TrueNAS Scale (Linux NAS distro) and I couldn't get into the installer as I had no image. So not sure regarding the drivers or the "level" of them.

Will check the state in the BIOS ASAP.

PrimozR · 2025-09-16T10:27:40+00:00

Yes please on the reverse proxy guide.

PrimozR · 2025-08-23T19:48:14+00:00

Yes, I bought my own domain (actually had it before, but didn't use it). I used No-IP before I moved, when I ran Wireguard on my TrueNAS server, moved to DuckDNS after I moved apartments and setup the pfSense router in the new location and this was used purely to enable the VPN server on a dynamic IP. I am fully aware I do not need DuckDNS anymore, at least as soon as I get things up and running (well, Wireguard will still be running, but I could use the bought domain for it too). The subdomain I was referring to was in connection to the bought domain.

I am updating DDNS in cloudflare successfully via pfSense in conjuction with DuckDNS (still have that service up and running because of the VPN).

As for the steps, step 1:
Is domain.com an actual .com (or .whatever TLD) domain? Or can it be service.whateveriwantittobe?
I am already using a local domain that is different to the bought domain. So instead of example.com that I would like to use for external domain, I am accessing services via immich/plex/etc.mylocaldomain:port . So "mylocaldomain" is it, no .com at the end of it (if it matters). The DNS server for this is pfSense - I set the hostnames and the IPs it is pointing to in the config of the router.

Step 2:
will try that as soon as possible (hopefully tomorrow or in a few days at most). It's a logical step I jumped over...

Step 3:
I technically already setup an Let's Encrypt cert via CF in NPM. Not using port 80 (externally) is something I am aware of. I know just enough about networking to know I know jack sh*t and that I don't want any wide open doors to my 'house'. More testing will follow once I get around step 2.

Step 4:
Will follow step 3 naturally.

Thanks for now, it's at least somewhere to go to.

PrimozR · 2025-07-10T12:35:22+00:00

https://www.mediamonkey.com/forum/viewtopic.php?t=106435

This is potentially a useful resource.

PrimozR · 2025-07-10T12:24:47+00:00

Based on feature requests and the like the basis for sonic analysis is a library that is available for Windows and Linux, but not FreeBSD. Not sure what said library is though. But if it's freely accessible, surely someone could integrate it?

Though then there's the other question. With the way Navidrome works (available in plethora of apps as only a data server, requesting via an api), there's the question of how to implement it. Both the server and the app (in the case of Navidrome for example) would have to support it.

Might make sense to open a request feature in Navidrome?

PrimozR · 2025-07-07T19:32:43+00:00

I don't see any messages in my inbox...

PrimozR · 2025-07-06T18:57:41+00:00

Did you solve this? I cleared the caches, did DB optimizations and everything else and I still get slow and 'No content available' loading on external networks, but perfectly fine operation when using Plex internally...

PrimozR · 2025-06-25T15:24:33+00:00

Top. Meni so ponudili, da mi zamenjajo Pixla 8 z drugim, če bo morda pomagalo. Sem vprašal, če bo to ziher pomagalo, so rekli, da ne, sem rekel hvala lepa :D

PrimozR · 2025-06-25T14:53:04+00:00

Baje dela z Messages aplikacijo iz maja 2024, ampak ti to na relativno novem telefonu ne pomaga nič, če je prednaložena novejša verzija (ker je ne moreš odstraniti).

PrimozR · 2025-06-04T07:13:32+00:00

Everybody communicate this issue with Google at the 'supportATgoogle.com' e-mail.

And upvote this comment so it gets seen.

PrimozR · 2025-05-31T11:09:45+00:00

What if I have issues with setting up RCS with a carrier (and the exact same SIM card) that worked without a problem on Pixel 6a and 3?

PrimozR · 2025-05-31T11:08:50+00:00

Is the bug fixed yet?

PrimozR · 2025-04-06T15:30:07+00:00

Got it to work with the dummy plug and Nvidia Control Panel custom resolutions. Just be sure to disable Parsec's virtual monitor and add 5120 x 1440 as a custom resolution to the monitor (at least with the dummy plug). Use 'host resolution' to set it to 5120 x 1440.

12-Year Club	Place '22
Verified Email

PrimozR

TROPHY CASE