[prev in list] [next in list] [prev in thread] [next in thread]
List: openswan-users
Subject: Re: [Openswan Users] packet bigger then 280 want go threw
From: Paul Wouters <paul () xelerance ! com>
Date: 2004-12-20 21:29:59
Message-ID: Pine.LNX.4.61.0412202228360.11952 () expansionpack ! xtdnet ! nl
[Download RAW message or body]
On Sun, 19 Dec 2004, jorge wrote:
> Hi i have a problem with openswan 2.3 running with kernel 2.6.9. Ipsec starts
> without problems, i can also ping some hosts from second segment of a tunnel.
> The problem is that if i try to ping with packet bigger then 280 bytes, the
> packet will not go threw. What is interesting , that tcpdump shows me only
> the packets smaller then 280 bytes, bigger want show..
> Maybe is something with mtu.
Did you load the xfrm4_tunnel mode?
You can try and disable compression otherwise.
NETKEY has no support for path MTU discovery. You can try TCP clamping.
Paul
--
Math is case-sensitive
--- Ian Goldberg
_______________________________________________
Users mailing list
Users@openswan.org
http://lists.openswan.org/mailman/listinfo/users
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic