[c-nsp] MTU / BGP

Mark Tinka mark.tinka at seacom.mu
Tue Jul 21 06:25:59 EDT 2015 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256



On 21/Jul/15 09:16, Gert Doering wrote:
>
> In that case, your L3 MTU on your routers needs to be set to something
> lower or equal to the lowest L2 MTU that your packets might hit.

I generally don't set protocol MTU, only Layer 2 MTU. Normally, your
protocols should be able to infer their MTU from the Layer 2 MTU.

But yes, in some cases, setting the Layer 3 MTU may be necessary.

>
>
> (We have a leased link "ethernet over packet" that loses 8 byte MTU when
> the primary link in their network goes down and switches to backup... bit
> us mightily.  Reduced L3 MTU on our side to take that into account, no
> problems anymore)

Ouch.

>
>
> Best, get your provider to guarantee you a given value, and regularily
> *verify* that.  What we do: ping all routers behind "dubious" links with
> 10k packets - on the way *to* the router, the packet is fragmented to
> 1500 bytes (because the management system doesn't have a bigger uplink),
> so the ping packet will arrive always, no matter what the MTU.  Now the
> return packet will sent fragmented to the L3 MTU of the router being
> pinged - if that is too big for its L2 link, we'll notice and can adjust.
>
>     mgmt -(1500)- R1 -(9000)- R2 -(dubious)- R3
>
> (just to point out the obvious: when the "large fragments" arrive at R1,
> they will be fragmented further, down to 1500.  This feels fairly cruel,
> but it works out nicely)

That's a good workaround.

Mark.
-----BEGIN PGP SIGNATURE-----
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=G8lj
-----END PGP SIGNATURE-----

More information about the cisco-nsp mailing list