On Sunday 27 March 2005 16:48, you wrote:
> > 3) Longer packets get dropped. I have confirmed this with tcpdump.
> > When I change the client MTU to 1400 everything works fine, but I need a
> > more systemic solution because I will not have access to all potential
> > clients.
> Did you try to set the WAN interface MTU to 1400 on both tunnel ends?
> I'm not sure it even does something for IPsec, but I would try. Who
> -- Vincent
I did, but it had no effect. In fact I tried various values down to ~600 but
it had no effect whatsoever. I agree that it should not affect IPsec.