Subject: Re: Small MTU and TCP MSS
To: None <>
From: Matthias Scheler <>
List: current-users
Date: 05/11/2002 05:31:20
In article <>,
	Paulo Alexandre Pinto Pires <> writes:
> I thought of having the NetBSD firewall forcibly fragment large
> segments, but I have read some discussions in NetBSD mailing list
> archives where people condemned this severely.  Anyway, is it possible
> to do it with IPF/IPNAT?

The common work arround for this problem is called MSS clamping and e.g.
done by PPPoE routers because the MTU on PPPoE lines is usually 1492.
NetBSD-current supports MSS clamping since a few weeks. Have a look at
the bottom of this URL:

The IP NAT setup explained there should fix your problem.

	Kind regads

Matthias Scheler