Re: Odd issue with two SNATed Firewalls and Wireless router

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: netfilter@xxxxxxxxxxxxxxxxxxx
Subject: Re: Odd issue with two SNATed Firewalls and Wireless router
From: "Taylor, Grant" <gtaylor@xxxxxxxxxxxxxxxxx>
Date: Wed, 24 Aug 2005 10:40:58 -0500
In-reply-to: <1124886644.9968.186.camel@xxxxxxxxxxxxxxxx>
References: <1124886644.9968.186.camel@xxxxxxxxxxxxxxxx>
Sender: netfilter-bounces@xxxxxxxxxxxxxxxxxxx
User-agent: Mozilla Thunderbird 1.0.2 (X11/20050520)

> most of the mail comes down .... it seems to break when transmissions
> are over +-600 KB)

Try using the TCPMSS target to limit the MSS (Maximum (TCP) Segment Size) value to be at least as small as your path MSS.

Hint:

iptables -t filter -A FORWARD -p tcp --tcp-flags SYN,RST SYN -j TCPMSS --clamp-mss-to-pmtu



Grant. . . .

References:
- Odd issue with two SNATed Firewalls and Wireless router
  - From: Andrew Gargan

Prev by Date: RE: Connections
Next by Date: Help with iptables 1.3.3
Previous by thread: Odd issue with two SNATed Firewalls and Wireless router
Next by thread: Re: Odd issue with two SNATed Firewalls and Wireless router
Index(es):
- Date
- Thread

[Index of Archives] [Linux Netfilter Development] [Linux Kernel Networking Development] [Netem] [Berkeley Packet Filter] [Linux Kernel Development] [Advanced Routing & Traffice Control] [Bugtraq]

Powered by Linux