Question about core update 126 and the site https://wetransfer.com

General questions.
Post Reply
gdgiannop
Posts: 7
Joined: July 28th, 2017, 12:37 pm
Location: Athens, Greece

Question about core update 126 and the site https://wetransfer.com

Post by gdgiannop » January 30th, 2019, 3:10 pm

We use the site https://wetransfer.com to upload files to colleagues, so that they can download them by using a
link provided by the site after the upload completes.
We use the free option which allows files sizes upto 2G, but our files are always below 300 Mbytes.
Up to core update 124, we could upload files.
With core update 126, we can not upload files unless the file size is tiny. For instance, we can not
upload files of 150 Mbytes.
Uploading interrupts and start from 0 byte again and again.
The session is https/443.
Is there any change in core update 126 that could affect file-uploading from browsers that use ipfire proxy ???
Thank You.
George G.

User avatar
Deepcuts
Posts: 459
Joined: March 1st, 2016, 3:18 pm
Location: Romania

Re: Question about core update 126 and the site https://wetransfer.com

Post by Deepcuts » January 30th, 2019, 6:57 pm

Did a quick test upload and it is working just fine.
wt.png
I am using transparent proxy on http without any setting in browsers.
https sites are bypassed in proxy so IPFire does not interfere with https://wetransfer.com/ unless you did some sort of SSL bump and you are intercepting/using SSL sites also.
Image
Image

gdgiannop
Posts: 7
Joined: July 28th, 2017, 12:37 pm
Location: Athens, Greece

Re: Question about core update 126 and the site https://wetransfer.com

Post by gdgiannop » January 31st, 2019, 8:33 am

Thank you for your feedback.
With my local network setup, I can not avoid the proxy. Both the ipfire proxy and firewall are in the data path.
I use "IPFire 2.21 (i586) - Core Update 126" with usual-standard settings.
My problem persists and I keep on checking and testing,
Best Regards

User avatar
Deepcuts
Posts: 459
Joined: March 1st, 2016, 3:18 pm
Location: Romania

Re: Question about core update 126 and the site https://wetransfer.com

Post by Deepcuts » January 31st, 2019, 11:19 am

So you are using the proxy for SSL sites also?
Image
Image

gdgiannop
Posts: 7
Joined: July 28th, 2017, 12:37 pm
Location: Athens, Greece

Re: Question about core update 126 and the site https://wetransfer.com

Post by gdgiannop » February 1st, 2019, 9:40 am

Yes, on the browser, I use the proxy for "all protocols".
Today, I did a test:
On one specific PC, I changed the browser settings to point to another ipfire i586 ver124 (not updated yet),
which is located in another building (within our intranet).
All worked fine (slower but successfully), uploading to https://wetransfer.com was fine too.
It seems to me that ver 126 has brought about my problem.
Many Thanks

gdgiannop
Posts: 7
Joined: July 28th, 2017, 12:37 pm
Location: Athens, Greece

Re: Question about core update 126 and the site https://wetransfer.com

Post by gdgiannop » February 1st, 2019, 2:06 pm

Our browser is Firefox Quantum 65.0 (64-bits)
and the proxy settings:
firefox_settings.jpg

rodneyp
Posts: 129
Joined: October 4th, 2010, 2:17 am
Location: Australia

Re: Question about core update 126 and the site https://wetransfer.com

Post by rodneyp » February 2nd, 2019, 9:57 pm

Having to set this proxy manually on each workstation is administratively more complex. It's the type of configuration my former ISP was recommending 20 years ago, primarily to minimise download traffic.

Simply setting GREEN (and BLUE, if relevant), as per https://wiki.ipfire.org/configuration/network/proxy, should achieve the same, in a much more manageable way.

gdgiannop
Posts: 7
Joined: July 28th, 2017, 12:37 pm
Location: Athens, Greece

Re: Question about core update 126 and the site https://wetransfer.com

Post by gdgiannop » February 4th, 2019, 11:26 am

I fully agree, my setup is very "manual" and not optimum. However, my
problem is not related to this.
We will consider moving to a more effective and flexible way, possibly with a central pac file per site.
Many Thanks.

gdgiannop
Posts: 7
Joined: July 28th, 2017, 12:37 pm
Location: Athens, Greece

Re: Question about core update 126 and the site https://wetransfer.com

Post by gdgiannop » March 14th, 2019, 1:55 pm

After a lot of search, it turned out that our problem affected mainly our sites that are behind VDSL lines and
that it was not related only to core-update 126.
It seems that ipfire after core-update 119 or 120 disabled the "path-mtu discovery" feature.
After commenting out the line "net.ipv4.ip_no_pmtu_dsic = 1" in the /etc/sysctl.conf file and activating
it, our problem disappeared.
We have also noticed that core-update 128 (32-bits) has excluded the above line.
For us, if this is a permanent removal and pmtu-discovery remains active it will be very helpful.

Post Reply