Path MTU discovery broken in IPSec
Bjoern A. Zeeb
bzeeb-lists at lists.zabbadoz.net
Mon Oct 30 14:35:47 UTC 2006
On Mon, 30 Oct 2006, Khetan Gajjar wrote:
> There are no firewall rules that are specific to the IPSec tunnels.
and no rules specific to ICMP?
> This, combined with the fact that small data transfer sessions
> across the IPSec tunnels work but small ones don't lead me to believe
> this could be a PMTU issue within the IPSec tunnel.
can you start trying with ping -s 1000 and going up to see when it
starts to fail? Try to find out exactly.
Also could you post the relevant netstat -rnW output?
--
Bjoern A. Zeeb bzeeb at Zabbadoz dot NeT
More information about the freebsd-net
mailing list