[Bug 443] 2.6 kernel failing in NAT with significant outbound
traffic
bugzilla-daemon at bugzilla.netfilter.org
bugzilla-daemon at bugzilla.netfilter.org
Thu Feb 9 15:48:44 CET 2006
https://bugzilla.netfilter.org/bugzilla/show_bug.cgi?id=443
laforge at netfilter.org changed:
What |Removed |Added
----------------------------------------------------------------------------
Severity|blocker |normal
------- Additional Comments From laforge at netfilter.org 2006-02-09 15:48 MET -------
have you tried to disable window scaling via sysctl?
This really looks like it isn't a linux/netfilter/iptables problem, but rather a
problem of some [broken?] box sitting in between that tries to do nasty things
to packets. The rewritten MSS is one indication for that. Also, the ICMP block
will break PMTU, maybe that's why somebody tries to workaround by decreasing the
MSS.
What happens if you set the MSS to 1000 (or even change the MTU of the outbound
interface to 1000 ?
--
Configure bugmail: https://bugzilla.netfilter.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You reported the bug, or are watching the reporter.
More information about the netfilter-buglog
mailing list