Hello Narendra,
There is no specific, dedicated tool, other than just trying large packets by,
for example, using the -s flag for ping.
No, MTU problems can not cause TCP checksum errors. That is likely a false
lead. It might be caused by RX and TX checksum offloading though. Check the
sizes
Noel Kuntze
writes:
Hi,
Those are likely all false leads. It's likely to be an MTU/MSS
problem, which is described on the wiki[1].
Thank you very much for the quick response. I will follow the
instructions provided in the wiki.
Is there a tool that I can use to verify that it is MTU
Hi,
Those are likely all false leads.
It's likely to be an MTU/MSS problem, which is described on the wiki[1].
Kind regards
Noel
[1]
https://wiki.strongswan.org/projects/strongswan/wiki/ForwardingAndSplitTunneling#MTUMSS-issues
Am 21.04.20 um 20:38 schrieb Narendra Joshi:
> Hi,
>
> I have
Hi,
I have setup an IPSec gateway on a virtual instance in a VPC using
a cloud provider. The cloud provider has Elastic IPs that aren't
attached to any network interface on the virtual instance so
strongSwan uses NAT-T. Also I need to do SNAT/DNAT for mapping my
side of the subnet that is
Hello
I am not seeing unbound being used by charon for OCSP or CRL, the log file does
not show an attempt to start unbound.
Attached is the log file, and below are configuration and events.
What should I check for ?
I am using the default configuration of charon (which is):
strongswan unbound