i have a site to site vpn with possible mtu issues
i have configured the ip tcp adjust-mss 1300 command on both the lan side closest to the AD servers and on the interface facing the wan on my local router
the vpn doesn't start on the routers but on an attached hardware encryptor
there is another hardware encryptor on the remote site
i also have a route-map applied to the external/wan interface of my local router
route-map clear-DF permit 10 match ip address 150 set ip df 0
ACL 150 is permit tcp any any
this has resolved lots of issues i was having with users trying to get authenticated internet access from the remote site across the vpn but i'm getting reports of problems adding new machines to the remote lan and with applying group policy
can someone advise
- should i set the mtu as well as configuring the ip tcp adjust-mss 1300 command
- are there any relevant config guides for a site to site vpn and using adjust-mss
i've attached a basic topology so hopefully it will help
thanks to anyone taking the time to read this or to reply
Hi everyone, I would like to thank you in advance for any help you can provide a newcomer like myself!
Im studying the 100-105 book by Odom and am currently on the topic of Port security. I purchased a used 2960 and I'm trying to follow a...
While deploying a number of 18xx/2802/3802 model access points (APs), which run AP-COS as their operating platform. It can be observed on some occasions that while many of their access points were able to join the fabric WLC withou...
I am going to design and build an LAN network under a tunnel underground with long distance between the switches.
I will have 2 Catalyst switches and 8 Industrial IE3000, and they will be connected with fiber.
For now I am planning on use Layer-2 s...