We're seeing more boxes than I'd expect that simply drop larger packets (UDP packets, without the IP DF bit set) instead of forwarding them or fragmenting them and then forwarding the fragments. Anyone else seeing the same thing?
I think everyone knows that the Cisco 3000 VPN client software has the problem (and the "SetMTU" program to work around it by having the client fragment before handing the packet to the VPN shim), but we're also seeing things like Linksys cable modem+NAT+wireless boxes doing the same thing to packets that are smaller than Ethernet MTU but bigger than around 1300 bytes -- apparently only on the NAT hairpin path (two hosts inside talking to each other using the public IP address), but it still is incorrect behavior. Matthew Kaufman [EMAIL PROTECTED] _______________________________________________ p2p-hackers mailing list [email protected] http://lists.zooko.com/mailman/listinfo/p2p-hackers
