[Openswan Users] PMTU issues

Benny Amorsen benny+usenet at amorsen.dk
Wed May 28 09:47:17 EDT 2008

Previous message: [Openswan Users] PMTU issues
Next message: [Openswan Users] Audit users connections
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Benny Amorsen <benny+usenet at amorsen.dk> writes:

> -A FORWARD -p tcp -m tcp --tcp-flags SYN,RST SYN -j TCPMSS --set-mss 1380

This is, unfortunately, wrong. It should be:

-A FORWARD -p tcp -m tcp -m tcpmss --tcp-flags SYN,RST SYN ! --mss 0:1380 -j TCPMSS --set-mss 1380

Otherwise set-mss will increase mss if mss is below 1380. Oops.


/Benny

Previous message: [Openswan Users] PMTU issues
Next message: [Openswan Users] Audit users connections
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Users mailing list