At 08:26 AM 7/17/00 +0200, Mikael Abrahamsson wrote:
On the other hand, at work we're doing some tunneling using ciscos. Due to routing etc the ICMP "need-to-frag"-messages get lost and the people behind those tunnels cannot use 90% of the www sites (so they have to resort to proxies). Seems to me that PMTUd works better than most people think.
Wow, why would the ICMPs get lost? Also, cisco has a feature on tunnels now where the routers will frag & de-frag making the tunnel MTU effectively 1500 bytes (or whatever you set).
I do believe that NT and Win2k comes default with a registry setting that makes it send all TCP traffic with the DF flag set (which I can see no reason for unless M$ IP stack cannot do refragmentation properly). This setting is changable as far as I know but I cannot seem to find the information at this time. Anyone?
I have no clue if that is really a setting. (Do not run any MS web servers.) However, end stations do not do fragmentation. They do re-assembly, but the receiving station has no control over whether something gets fragmented in transit to it. If the MTU of a path is less than, say, 1500, the end station just sends out smaller packets, not fragments. Since it is likely that you have visited an MS-power site, and you say you can reach all sites, then the MS IP-stack can probably send out packets < 1500 bytes long. If the setting you describe does exist (and it may very well considering MS' history), it is probably just another screw up from the world's black-hole for bad programmers.
Mikael Abrahamsson email: swmike@swm.pp.se
TTFN, patrick
On Mon, 17 Jul 2000, Patrick W. Gilmore wrote:
Wow, why would the ICMPs get lost?
I think it's because of access lists etc. I am not the one who have set it up so I do not know. We've had this problem from two different companies (one for our national needs and one for our international needs). The international one has solved it with what you mention below.
Also, cisco has a feature on tunnels now where the routers will frag & de-frag making the tunnel MTU effectively 1500 bytes (or whatever you set).
Yes, this is what I have asked the people to check it out.
I do believe that NT and Win2k comes default with a registry setting that makes it send all TCP traffic with the DF flag set (which I can see no reason for unless M$ IP stack cannot do refragmentation properly). This setting is changable as far as I know but I cannot seem to find the information at this time. Anyone?
I have no clue if that is really a setting. (Do not run any MS web servers.)
However, end stations do not do fragmentation. They do re-assembly, but the receiving station has no control over whether something gets fragmented in transit to it.
By "refragmentation" I meant re-assembly. Sorry. -- Mikael Abrahamsson email: swmike@swm.pp.se
participants (2)
-
Mikael Abrahamsson
-
Patrick W. Gilmore