Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
S
S
scamp2011-01-09 22:57:50
FreeBSD
scamp, 2011-01-09 22:57:50

FreeBSD, change MSS?

There is a basin with several ezernets, the gre-tunnel is terminated on it.
The part of clients comes on ezer, a part on pptp from NAS on the next basin.
There is pf, without nat, in all pass no state rules.
Those who are connected via ezer with MTU 1500 cannot get to some sites (including Habr) that are visible through this gre tunnel. The specificity of these hosts is such that all packets from them contain the DF flag.
Tell me an effective way to tune TCP MSS in passing traffic for FreeBSD, I
included in pf scrub on gre0 fragment reassemble max-mss 1436 , but unfortunately it did not help, perhaps because all the rules below are without keep state.
I tried to use ng_tcpmss, the traffic passes through the node, there is no effect.

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Similar questions
S
Sergey Ivanov2017-02-08 17:08:30
How to update openssl on FreeBSD? 3Reply
A
alexan2017-02-15 18:07:56
Listen queue overflow in FreeBSD when mailing. Where to twist? 3Reply
N
Nabi Alimetov2017-03-01 08:36:04
Why does DHCP server change ip addresses on hosts in LAN? 2Reply
P
post_ed2019-08-27 15:40:24
How to set up two-factor authentication VPN (mpd5)? 1Reply
M
Mike Khromov2015-04-02 16:25:50
How to get rid of Invalid US-ASCII character in compass? 1Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question