Date: Mon, 30 Oct 2006 14:33:16 +0000 (UTC) From: "Bjoern A. Zeeb" <bzeeb-lists@lists.zabbadoz.net> To: Khetan Gajjar <khetan@os.org.za> Cc: "George V. Neville-Neil" <gnn@freebsd.org>, freebsd-net@freebsd.org Subject: Re: Path MTU discovery broken in IPSec Message-ID: <20061030143114.I2462@maildrop.int.zabbadoz.net> In-Reply-To: <20061030145256.A2293@gauntlet.os.org.za> References: <20061027203322.X2293@gauntlet.os.org.za> <m2k62iksd5.wl%gnn@neville-neil.com> <20061030145256.A2293@gauntlet.os.org.za>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, 30 Oct 2006, Khetan Gajjar wrote: > There are no firewall rules that are specific to the IPSec tunnels. and no rules specific to ICMP? > This, combined with the fact that small data transfer sessions > across the IPSec tunnels work but small ones don't lead me to believe > this could be a PMTU issue within the IPSec tunnel. can you start trying with ping -s 1000 and going up to see when it starts to fail? Try to find out exactly. Also could you post the relevant netstat -rnW output? -- Bjoern A. Zeeb bzeeb at Zabbadoz dot NeT
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20061030143114.I2462>