On Saturday 18 Feb 2012 19:32:04 Etienne Champetier wrote: > Hello > > Is there a reason why the MSS clamping is done in FORWARD instead of > POSTROUTING ? (it's the exemple in the manpage...) >
you shouldn't /need/ to clamp the MSS of packets to and from the router unless you're breaking ICMP, in which case, stop breaking ICMP. - also, if I remember rightly, clamping to pmtu isn't possible from the POSTROUTING chain. The only real discrepancy is that TCPMSS should be used in the mangle table, not filter - but fortunately it doesn't usually break anything if you fail to adhere to this. _______________________________________________ openwrt-devel mailing list [email protected] https://lists.openwrt.org/mailman/listinfo/openwrt-devel
