Re: Re: Flowtable with ppp/bridge

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



On Sun, May 02, 2021 at 03:51:08PM +0200, Frank Wunderlich wrote:
> Hi,
> 
> i got a bit further and it looks like an MTU-Issue
> 
> i tested now with my 5.10 bridges,vlan and pppoe
> 
> first 2 working without problems, pppoe works only if i reduce mtu to e.g. 1480 (pppoe has 1492).
>
> i tried with this patch (found as difference between my 5.10 and 5.12 hnat trees), but this does not solve it.
> 
> https://github.com/frank-w/BPI-R2-4.14/commit/5f7d57280c1982d993d5f4ff0edac310f820f607 (bpf: Drop MTU check when doing TC-BPF redirect to ingress)
> 
> any idea? i wonder why mtu is a problem here, as with 1500 default i
> still got internet-connection (over pppoe on main-router too) and
> due to Pathdiscovery it should fragment. Seems this is not working
> in 5.10 for flowtable. Without flowtable (disable "flow add" line,
> disabling "flags offload" is not enough) i have no issues.
> 
> any idea?

You have to add a rule to clamp TCP mss to path MTU.

... tcp flags syn tcp option maxseg size set rt mtu



[Index of Archives]     [Linux Netfilter Development]     [Linux Kernel Networking Development]     [Netem]     [Berkeley Packet Filter]     [Linux Kernel Development]     [Advanced Routing & Traffice Control]     [Bugtraq]

  Powered by Linux