Subject: Re: Small MTU and TCP MSS
To: None <email@example.com>
From: Matthias Scheler <firstname.lastname@example.org>
Date: 05/11/2002 05:31:20
In article <3CDCA35F.6A278959@ppires.org>,
Paulo Alexandre Pinto Pires <email@example.com> writes:
> I thought of having the NetBSD firewall forcibly fragment large
> segments, but I have read some discussions in NetBSD mailing list
> archives where people condemned this severely. Anyway, is it possible
> to do it with IPF/IPNAT?
The common work arround for this problem is called MSS clamping and e.g.
done by PPPoE routers because the MTU on PPPoE lines is usually 1492.
NetBSD-current supports MSS clamping since a few weeks. Have a look at
the bottom of this URL:
The IP NAT setup explained there should fix your problem.
Matthias Scheler http://scheler.de/~matthias/