[c-nsp] CBAC not properly handling fragmentation?
Christian Zeng
christian at zengl.net
Sun Jan 29 05:29:56 EST 2006
Hi,
* Marc Haber <mh+cisco-nsp at zugschlus.de> wrote:
>Hm. Now that you mention it. But shouldn't that be 40?
Of course, IP header size must be included, too (-20).
Have you investigated output from "debug ip virtual-reassembly"? You've
configured this and maybe the packet reassembly at the router (caused by
(wrong) MSS clamping) is broken?
In addition, I'd tcpdump more verbose to see what MSS is announced at
both or at least of the server end of a tcp session.
>How do I enable training log?
dsl enable-training-log
under the interface.
Best regards,
Christian
More information about the cisco-nsp
mailing list