Re: Problem DNAT using ppp0 ADSL

To: debian-firewall@lists.debian.org
Subject: Re: Problem DNAT using ppp0 ADSL
From: "Wojciech Ziniewicz" <wojciech.ziniewicz@gmail.com>
Date: Wed, 12 Jul 2006 09:35:52 +0200
Message-id: <[🔎] d1473ad90607120035u7167fb81n81bd211705e7a5e5@mail.gmail.com>
In-reply-to: <[🔎] 002301c6a4fc$3fdf9910$1300000a@spa.local>
References: <[🔎] 002301c6a4fc$3fdf9910$1300000a@spa.local>

2006/7/11, Ronan Lopes <lopesronan@yahoo.com.br>:

I am having problems to use DNAT in one gateway with
external interface ppp0 and internal interface eth1 Already
I placed MTU low 890 of eth0 very;  but ppp0
only connects with MTU 1492 would like to reduce this
MTU, therefore when I use the rule:

iptables -A FORWARD -p tcp -m tcp --tcp-flags \
SYN,RST SYN -j TCPMSS --clamp-mss-to-pmtu


and


iptables -t nat -I PREROUTING -p tcp --dport 3389 \
-j DNAT --to 10.0.0.7


    it does not function!

set mtu for all eth's to 1500 and for ppp use 1492 (or 1490 does not matter)
setting very low mtu is dangerous for big networks due to linux weak
packet fragmentation..

regards
--
Wojciech Ziniewicz            |  jid:zeth@chrome.pl
http://silenceproject.org       | http://zetho.wordpress.com

Reply to:

References:
- Problem DNAT using ppp0 ADSL
  - From: "Ronan Lopes" <lopesronan@yahoo.com.br>

Prev by Date: Re: DNAT + ADSL... to reduce MTU of the network
Next by Date: Problem DNAT using ppp0 ADSL
Previous by thread: Problem DNAT using ppp0 ADSL
Next by thread: Problem DNAT using ppp0 ADSL
Index(es):
- Date
- Thread