RE: gre tunnel MTU adjustment

To: <debian-isp@lists.debian.org>
Subject: RE: gre tunnel MTU adjustment
From: "Christian Storch" <storch@infra.net>
Date: Thu, 15 May 2003 11:51:29 +0200
Message-id: <[🔎] NCBBJBBNPIACMLCJFGFCOEIHJJAA.storch@infra.net>
In-reply-to: <[🔎] 1052987556.1548.2.camel@tux>

Perhaps you want to say:

iptables -A FORWARD -p tcp --tcp-flags SYN,RST SYN -j
TCPMSS --clamp-mss-to-pmtu

?
Another simple possibility for small networks is to adjust
the default MSS of every client to something about 1400.
(that value fits for nearly every kind of tunnel)

Christian

PS: Something like a crazy workaround is to establish two tunnels and
bundle them with MPP. Finally you could get 'virtual' 1500 MSS.
Normally used for real time traffic solutions.

-----Original Message-----
From: Teun Vink [mailto:teun@moonblade.net]
Sent: Thursday, May 15, 2003 10:33 AM
To: Jeff S Wheeler
Cc: debian-isp@lists.debian.org
Subject: Re: gre tunnel MTU adjustment

...

Hi,

I use a GRE tunnel between my DSL connection at home and the network of
the ISP I work for. I use this iptables line in my setup, which fixes
the MTU for all outgoing packets:

iptables -A FORWARD -p tcp --tcp-flags SYN,RST SYN -j TCPMSS --clamp

Works just fine...

...

Reply to:

Follow-Ups:
- RE: gre tunnel MTU adjustment
  - From: Teun Vink <teun@moonblade.net>

References:
- Re: gre tunnel MTU adjustment
  - From: Teun Vink <teun@moonblade.net>

Prev by Date: Re: Setting up VPN's
Next by Date: RE: gre tunnel MTU adjustment
Previous by thread: Re: gre tunnel MTU adjustment
Next by thread: RE: gre tunnel MTU adjustment
Index(es):
- Date
- Thread