When I go into the ASDM on my 5510 and uncheck the "Force maximum segment size for TCP proxy connections to be 1380" will that let the firewall accept packets larger than 1380? I am trying to limit fragmenting of some packets that are close to this size. Is there any performace hit or problem with using the sequence randomizer on the firewall? It says it opens a possible security hole if you don't use it. I was wondering if it is ok to turn this off?
I just a FYI...there is no VPN on this firewall or encryption.