Re: scrub reassemble tcp and nat causes problems with some sites
This is a discussion on Re: scrub reassemble tcp and nat causes problems with some sites within the lucky.openbsd.misc forums, part of the OpenBSD category; --> On Wed, 19 Jul 2006, Sebastian Benoit wrote: > This sounds like a MTU problem. Either those sites are ...
| |||||||
| FAQ | Members List | Calendar | Search | Today's Posts | Mark Forums Read |
02-18-2008, 06:50 AM
| ||||
| ||||
 Re: scrub reassemble tcp and nat causes problems with some sites On Wed, 19 Jul 2006, Sebastian Benoit wrote: > This sounds like a MTU problem. Either those sites are blocking Unlikely. I have cable, not a PPTP/PPPoE link. Therefore, no packet encapsulation. I'm aware of the MTU issue with ADSL. > ICMP-frag-needed messages or you are. I think I am. _Only_ reassemble tcp breaks things, but why? > - set the correct MTU > - check pf.conf for "scrub max-mss [...]" No changes necessary, IMHO. Have done this, of course. Turned up e.g.: http://www.benzedrine.cx/pf/msg07352.html http://monkey.org/openbsd/archive/bu.../msg00059.html Similar problem but no solution. > - why do you use no-df? Because of the NFS issue mentionied in pf.conf(5) and the FAQ. May not be useful on the external interface, though. However, the problem persists even without no-df. Regards, Walter      |
Linear Mode
