mss to pmtu clamping partially broken?

Andreas Steinmetz ast at
Mon Jul 2 19:04:12 CEST 2007

Jan Engelhardt wrote:
> Do you really need clamping? It's a hack, since TCP should do MSS negotiation
> itself. (Of course it may happen that some routers are broken.) But usually not
> for incoming packets.

You never know when you hit ICMP blackholes, broken routers and other
evil things. Better safe than sorry so clamping is the way to go for me.

Andreas Steinmetz                       SPAMmers use robotrap at

More information about the netfilter-devel mailing list