From owner-freebsd-questions Thu Mar 18 16:27: 0 1999 Delivered-To: freebsd-questions@freebsd.org Received: from mailgate.program-products.co.uk (samson.program-products.co.uk [212.240.242.226]) by hub.freebsd.org (Postfix) with ESMTP id 3F9FB15336; Thu, 18 Mar 1999 16:26:56 -0800 (PST) (envelope-from terry@program-products.co.uk) Received: by mailgate.program-products.co.uk via smap (V2.1) id xma000641; Fri, 19 Mar 99 00:25:17 GMT To: schmitt@penta.ufrgs.br, freebsd-questions@freebsd.org, freebsd-hacker@freebsd.org Subject: Re: SKIP and NAT, I got it. References: <36F00CD3.163F743E@penta.ufrgs.br> From: Terry Glanfield Date: 19 Mar 1999 00:25:14 +0000 In-Reply-To: schmitt@penta.ufrgs.br's message of "17 Mar 99 20:13:07 GMT" Message-Id: Lines: 22 X-Mailer: Gnus v5.6.44/Emacs 19.34 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG schmitt@penta.ufrgs.br (Marcelo) writes: > Problem > The firewall has to notify with icmp 3.4 (packet needed > fragmentation) computers which want to send packets bigger than 1366 > bytes, because the MTU of the external interface is modified by skip. It > > notifies when the connection is destined to Internet, but it doesnīt > when the packet is destined to the tunnel. So I had to alter MTU in > every workstation of my network. Thatīs very bad. > > What I would like to know is why the packet is first encapsulated by > skip and only after that the system finds out that it canīt be > transmitted because of MTU. Damn, my testing never used packets >512. I'm hitting the same problem now. Can anyone tell me how to manually fragment a packet? I'll try to hack it into skip but I'm a little out of my depth here. Terry. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message