On Wednesday 2011-11-16 20:25, John A. Sullivan III wrote: >:FORWARD DROP >-A FORWARD -p tcp --tcp-flags SYN,RST SYN -j TCPMSS --clamp-mss-to-pmtu >-A FORWARD -m mark --mark 0xcccc/0xcccc -j VPN_ALLOW >-A FORWARD -j UPEPIN_DENY >-A FORWARD -j UPEPIN >-A FORWARD -j LOG --log-level warning --log-prefix "No Match: " > >I may be ignorant on this matter (and hence this request for help) but >has the Internet matured to the point that the TCPMSS rule is no longer >necessary? Is everyone now handling requests for fragmentation properly? Well, of course there's always some "who never grow up", but I have not seen any such sites lately. Probably because such pages are of such a sort that does not interest me ;-) -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
