[Openswan Users] fragmentation is not working with openswan/l2tpd
Paul Wouters
paul at xelerance.com
Wed Jan 11 16:37:26 CET 2006
On Wed, 11 Jan 2006, Joji Joseph wrote:
> I am using openswan-2.4.4 and l2tpd-0.69 in a Redhat 9.0 Linux box
> with openswan patched 2.4.20 kernel. My box is actually an L2TP client
> and trying get connected to a SOHO gateway L2TP server.
>
> The issue is, when I am trying to access the SOHO device web page, the
> ppp0 interface is sending http GET request of packet size 550.
>
> But in ipsec0 interface, this packet is converted as a ppp over l2tp
> packet of size 548 and the packet is getting fragmented.
There were mtu issues with ipsecX interfaces. You might be bitten by
bug #518. Can you try 2.4.5rc3?
> The main thing is the second fragment is sending at the first without
> encapsulating as a ppp over l2tp packet and it is using the wan IP
> address itself as its source and destination IPs.
Fragmentation at the l2tp layer usually means your connection will not
survive.
Paul
More information about the Users
mailing list