MTU Issues with double NAT

cedws · December 23, 2025, 11:06pm

I have an OpenWrt 24.10 device which I have freshly set up subnet 192.168.3.1/24 on. The WAN port is connected to another subnet 192.168.1.1/24 which I don't control, hence the need for double NAT.

My devices on the 192.168.3.1/24 subnet can route to the internet fine, but large downloads seem to stall and generally browsing the web feels slow and breaks intermittently, even though fast.com shows good download/upload speeds.

Connectivity is fine on the "WAN" network.

I suspect the problem is related to MTU but the things I've tried so far haven't worked. I've changed the Firewall settings and enabled MSS clamping on the lan->wan zone, and also tried decreasing the max MTU on the WAN port to 1400.

The MTU on the "WAN" network appears to be 1492, upstream connection probably PPPoE. (tested with ping, +28 to account for ICMP packet overhead).

What else can I try?

Thanks in advance

ncompact · December 23, 2025, 11:40pm

In the meantime, welcome and Merry Christmas

If you remove the router managing the 192.168.3.x/24 network, do you encounter the same problem with a PC connected to the 192.168.1.x/24 router?

Can you show us the current configuration of the 192.168.3.1/24 router?

I assume you've only touched the minimum by changing the br-lan IP address. Did you change anything else?

can you show us what you mean by this?

ps: Assuming you're talking about the "edgerouter x" you read this:

brada4 · December 23, 2025, 11:59pm

Which one is it then? Please elaborate on how MTU is an issue?

cedws · December 24, 2025, 12:04am

Merry christmas

No, this happens only on my subnet.

Just that plus enabling MSS clamping and fiddling with MTU on the wan interface.

I've been using the Hetzner 10GB file as a test. I can start downloading it, speed starts off good (30MB+/s sec), after 500MB or so the download stalls and fails. Happens with various other sites too, I tried downloading a Ubuntu ISO too as a test and same happens with that. As for browsing the web, sites with a lot of images take ages to load.

Yep EdgeRouter-X. I didn't know the performance was expected to be below gigabit but it's probably fine for now. Can this issue be explained by bufferbloat?

Thanks.

cedws · December 24, 2025, 12:06am

In the former statement I'm referring to the 192.168.3.1/24 network, not the "WAN" network.

brada4 · December 24, 2025, 7:23am

Nothing indicates a MTU issue, if such existed you have to have that both sides of your router.
If you somehow know like upstream uses vlan and pppoe you could retract 12 from your WAN MTU to better fit in.

Please connect to your OpenWrt device using ssh and copy the output of the following commands and post it here using the "Preformatted text </> " button (red circle; this works best in the 'Markdown' composer view in the blue oval):

Remember to redact passwords, VPN keys, MAC addresses and any public IP addresses you may have:

ubus call system board
cat /etc/config/network
cat /etc/config/wireless
cat /etc/config/dhcp
cat /etc/config/firewall

cedws · December 25, 2025, 10:40pm

After coming back to this a day later I can no longer reproduce the issue. No config was changed in OpenWrt, all that happened in the last day was a power cycle of the device. I have no clue what it could have been but at least it's resolved.

Thanks guys.

system · January 4, 2026, 10:40pm

This topic was automatically closed 10 days after the last reply. New replies are no longer allowed.