Re: ping packet loss when size gt 1500

To: debian-user@lists.debian.org
Subject: Re: ping packet loss when size gt 1500
From: Chris Davies <chris-usenet@roaima.co.uk>
Date: Wed, 20 Oct 2010 11:45:44 +0100
Message-id: <[🔎] ort2p7xl2t.ln2@news.roaima.co.uk>
Reply-to: chris@roaima.co.uk
References: <[🔎] 380-2201010017153025484@netptc.net> <[🔎] 4CBB2EDC.1030506@cyberspaceroad.com> <[🔎] go8so7xj64.ln2@news.roaima.co.uk> <[🔎] 4CBC1955.3010004@cyberspaceroad.com> <[🔎] kbqto7x7qp.ln2@news.roaima.co.uk> <[🔎] 4CBD3B3E.60707@cyberspaceroad.com> <[🔎] qqp0p7xul9.ln2@news.roaima.co.uk> <[🔎] 4CBE18C8.4010300@cyberspaceroad.com> <[🔎] 4CBEB45E.9030901@cyberspaceroad.com>

Adam Hardy <adam.ant@cyberspaceroad.com> wrote:
> Chain FORWARD (policy ACCEPT)
> target     prot opt source               destination
> TCPMSS     tcp  --  anywhere             anywhere           tcp 
> flags:SYN,RST/SYN TCPMSS set 1460

So you're clamping TCPMSS at 1460? What if the MSS needs to be lower,
i.e. your MTU has dropped? (I'm not sure how iptables handles this
situation as I don't usually need to fiddle MSS and MTU.)

Would you remove this rule and retest, please?

> Chain OUTPUT (policy ACCEPT)
> target     prot opt source               destination
> DROP       icmp --  anywhere             anywhere           icmp 
> destination-unreachable
> DROP       icmp --  anywhere             anywhere           state INVALID

I'm nervous of these two rules, too.
Chris

Reply to:

Follow-Ups:
- Re: ping packet loss when size gt 1500
  - From: Adam Hardy <adam.ant@cyberspaceroad.com>

References:
- RE: ping packet loss when size gt 1500
  - From: owens@netptc.net
- Re: ping packet loss when size gt 1500
  - From: Adam Hardy <adam.ant@cyberspaceroad.com>
- Re: ping packet loss when size gt 1500
  - From: Chris Davies <chris-usenet@roaima.co.uk>
- Re: ping packet loss when size gt 1500
  - From: Adam Hardy <adam.ant@cyberspaceroad.com>
- Re: ping packet loss when size gt 1500
  - From: Chris Davies <chris-usenet@roaima.co.uk>
- Re: ping packet loss when size gt 1500
  - From: Adam Hardy <adam.ant@cyberspaceroad.com>
- Re: ping packet loss when size gt 1500
  - From: Chris Davies <chris-usenet@roaima.co.uk>
- Re: ping packet loss when size gt 1500
  - From: Adam Hardy <adam.ant@cyberspaceroad.com>
- Re: ping packet loss when size gt 1500
  - From: Adam Hardy <adam.ant@cyberspaceroad.com>

Prev by Date: Re: KMail - forwarding issues
Next by Date: Re: KMail - forwarding issues
Previous by thread: Re: ping packet loss when size gt 1500
Next by thread: Re: ping packet loss when size gt 1500
Index(es):
- Date
- Thread