Hi, I have a route-based vpn setting between racoon and libreswan. The racoon side has MTU=1476, and libreswan has MTU=1332. When I ping with DF flag and pktsize larger than 1332 from libreswan side, pkt would be dropped as expected. However, from racoon side, ping with DF flag and pktsize=1400 could still reach host on libreswan side. Any idea why the vti01 does not drop the big pkt when DF is set?
Thanks, Xinwei
_______________________________________________ Swan mailing list [email protected] https://lists.libreswan.org/mailman/listinfo/swan
