> > Hmm. mss routing table attribute is only used by local TCP connections.
>
> Which is the point we care about. Transport mode. Im not quite sure why
> you are worried about tunnels - tunnels work, they always have
Right, and this is why I would propose to send back ICMP from the
tunnel start point to the originating host for tunnel mode and prevent
the IPSEC stack from sending back ICMP in the case of a transport mode
encapsulation, letting the large mtu/small mss work its course.
Thanks, Alan, for these clarifications.
> Alan
slainte mhath, RGB
- --
The first Ottawa Linux Symposium was a huge success! <ottawalinuxsymposium.org>
This SunRayce was a wet one! DroughtRelief_99? -- <www.sunrayce.com/sunrayce/>
Richard Guy Briggs -- PGP key available Auto-Free Ottawa! Canada
<http://www.conscoop.ottawa.on.ca/rgb/> </www.flora.org/afo/>
Prevent Internet Wiretapping! -- FreeS/WAN:<www.xs4all.nl/~freeswan>
Thanks for voting Green! -- <green.ca> Marillion:<www.marillion.co.uk>
-----BEGIN PGP SIGNATURE-----
Version: 2.6.3i
Charset: noconv
iQCVAwUBN6xcS9+sBuIhFagtAQGuSgP6A7S8eO0yzsoqvl3iykXYi5eI+jEgyD4T
G4o/jAz6zekkuv7r2wi2809ndZ8DHj4poq8lnzx3RiZYGn0MJS3vb/Nrg+4YU96+
4HRmWkPtbIfxAFFM0VN9m7zE/ByDp3kTvO2YznGdtw7mQ0/eSe84VxdP+fZUVCGH
4BMAzoKNRcM=
=sVY3
-----END PGP SIGNATURE-----
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/