[66013] in North American Network Operators' Group


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: Minimum Internet MTU

daemon@ATHENA.MIT.EDU (Hani Mustafa)
Mon Dec 22 08:57:46 2003

Date: Mon, 22 Dec 2003 15:57:07 +0200
From: Hani Mustafa <hani.mustafa@noorgroup.net>
To: nanog <nanog@merit.edu>
Reply-To: hani.mustafa@noorgroup.net
In-Reply-To: <1072097368.2076.336.camel@grendel>
Errors-To: owner-nanog-outgoing@merit.edu

> by GRE or IPSec. With this in mind, would we be safe to flag/drop/what
> ever all fragments smaller than 1200 bytes that are not last fragments
> (i.e., more fragments is still set)? 

No. Check previous thread about IPSec and MTU. Some IPSec implementations split the greater-than-mtu sized packet in half in order to avoid the possibility of further fragmentation down the road, thus better performance.

~Hani Mustafa


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[66013] in North American Network Operators' Group

Re: Minimum Internet MTU

daemon@ATHENA.MIT.EDU (Hani Mustafa)Mon Dec 22 08:57:46 2003

daemon@ATHENA.MIT.EDU (Hani Mustafa)
Mon Dec 22 08:57:46 2003