mss to pmtu clamping partially broken?

Andreas Steinmetz ast at domdv.de
Mon Jul 2 19:04:12 CEST 2007


Jan Engelhardt wrote:
> Do you really need clamping? It's a hack, since TCP should do MSS negotiation
> itself. (Of course it may happen that some routers are broken.) But usually not
> for incoming packets.

You never know when you hit ICMP blackholes, broken routers and other
evil things. Better safe than sorry so clamping is the way to go for me.

-- 
Andreas Steinmetz                       SPAMmers use robotrap at domdv.de



More information about the netfilter-devel mailing list