[ previous ] [ next ] [ threads ]
 From:  Jeff Buehler <jeff at buehlertech dot com>
 To:  Kristian Shaw <monowall at wealdclose dot co dot uk>
 Cc:  m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: [m0n0wall] outlook -> exchange problem
 Date:  Thu, 09 Feb 2006 10:30:53 -0800
Hi Kris -

OK - now I can see the problem.  I can't ping successfully at 2048 - the 
packets time out.  Setting Allow Fragmented Packets over AH (or I assume 
ESP) does not help.

So, the only solution is to use your modified image?  If so, can I 
install that remotely using the Firmware->Upload mechanism?


Kristian Shaw wrote:

> Hello,
> Just to answer another part of your email:
>> I ran ping tests from the client system to the Exchange system (ping 
>> the.server.com -f -l 1472) the result of these was no fragmentation 
>> up to 1472.  I also ran Network Monitor on the Exchange Server, which 
>> was inconclusive, but admitting my ignorance: is there a way to 
>> detect fragmented packets using Network Monitor?  There was nothing 
>> obvious in the traces that I ran.
> You should also be able to ping larger packets than 1472/1500 too, 
> because although they are larger than the ethernet MTU Exchange and 
> Outlook will still send them (RPC).
> ping -l 2048 host_name     should work too (and not get silently 
> dropped).
> Regards,
> Kris.