Turns out this is almost surely due to a too limited firewall that filters out PTMU ICMP packets in the Canonical VPN/network. Thus the "please lower your MTU" messages never make it into the scalingstack instance and into the container, and packets > 1400 bytes just end in the void. I'll write an RT about this and add
iptables -t mangle -A FORWARD -p tcp --tcp-flags SYN,RST SYN -j TCPMSS --clamp-mss-to-pmtu to the instance setup scripts as a workaround until then. Thanks Stéphane for explaining this! -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1572026 Title: be more clever about MTU of lxdbr0 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/lxd/+bug/1572026/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
