On Wed, 17 Dec 2008, Spencer Barnes wrote:
I removed all ACLs and Netflow but that did not have an effect. I think I can move NAT to the core router for testing purposes, I'll try and do that tomorrow morning. IOS version is (C7200-JK9O3S-M), Version 12.4(21).
If you're tunneling over 1500 media, doing "ip tcp mss-adjust 1300" on the interface where the traffic to encrypt/tunnel is passing unencrypted/untunneled, might help you. Worth a try though, you don't want multiple tunnel/encrypted packets per packet in the VPN.
-- Mikael Abrahamsson email: [email protected] _______________________________________________ cisco-nsp mailing list [email protected] https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
