Well, the cisco vpn client is connected, i can ping my far end and can download/upload file less than 6MB. Whenever I try to download files larger than 6MB, download start but it ends up with the error network path no longer, while the vpn connection is quite fine. This is an interesting case..
I know there are some mss/mtu tweaks which i already have tried, our remote end far away there are 15 to 20 hops ...where i should make mss/mtu changes?
First you can get the mtu size my pinging the other end PC from your source PC. Use the ping ipaddr -t -l 1500 -f, keep decreasing the value till you get a ping response. I guess from your post you must have done this. Now apply the tcp adj-mss commands on the interface where you begin your tunnel and also where the tunnel is ended.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...