Re: Strangness on fragmentation... | |
| [Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] | |
With ipsec tunnels I do solve with a simple:iptables -I FORWARD -p tcp --tcp-flags SYN,RST SYN -m policy --dir in --pol ipsec --mode tunnel -j TCPMSS --set-mss 1300
Unfortunately I do not use openvpn, ipsec is much better in my opinion. Cheers, Niccolò -- To unsubscribe from this list: send the line "unsubscribe lartc" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html