* Buggy MTU with Wireguard (attached pcapng)
@ 2020-01-09 22:05 alpha_one_x86
2020-02-03 18:04 ` Vasili Pupkin
0 siblings, 1 reply; 2+ messages in thread
From: alpha_one_x86 @ 2020-01-09 22:05 UTC (permalink / raw)
To: wireguard
[-- Attachment #1.1: Type: text/plain, Size: 352 bytes --]
Hi,
I have wireguard interface "veth", and my real interface "eth0".
No bug with openvpn, but with wireguard on IPv4 for https, I have bug,
see the attached file, the returned data is 3300byte, then Destination
unreachable (Fragmentation needed).
Bug into wireguard? How fix this?
The ok.pcapng it's same https download do with openvpn.
Cheers,
[-- Attachment #1.2: Type: text/html, Size: 883 bytes --]
[-- Attachment #2: bug.pcapng --]
[-- Type: application/x-pcapng, Size: 14004 bytes --]
[-- Attachment #3: ok.pcapng --]
[-- Type: application/x-pcapng, Size: 47608 bytes --]
[-- Attachment #4: Type: text/plain, Size: 148 bytes --]
_______________________________________________
WireGuard mailing list
WireGuard@lists.zx2c4.com
https://lists.zx2c4.com/mailman/listinfo/wireguard
^ permalink raw reply [flat|nested] 2+ messages in thread
* Re: Buggy MTU with Wireguard (attached pcapng)
2020-01-09 22:05 Buggy MTU with Wireguard (attached pcapng) alpha_one_x86
@ 2020-02-03 18:04 ` Vasili Pupkin
0 siblings, 0 replies; 2+ messages in thread
From: Vasili Pupkin @ 2020-02-03 18:04 UTC (permalink / raw)
To: alpha_one_x86, wireguard
[-- Attachment #1.1: Type: text/plain, Size: 959 bytes --]
The TCP connection MSS is set to 1460 bytes and also Don't fragment flag
is set. The server selects this MSS as a frame size on its side and
packet is dropped, probably. If you are using linux router try to use
this command "iptables -I FORWARD -p tcp --tcp-flags SYN,RST SYN -j
TCPMSS --clamp-mss-to-pmtu" or be careful to set MTU on all client
machines adapters correctly.
On 10.01.2020 1:05, alpha_one_x86 wrote:
>
> Hi,
>
> I have wireguard interface "veth", and my real interface "eth0".
>
> No bug with openvpn, but with wireguard on IPv4 for https, I have bug,
> see the attached file, the returned data is 3300byte, then Destination
> unreachable (Fragmentation needed).
>
> Bug into wireguard? How fix this?
>
> The ok.pcapng it's same https download do with openvpn.
>
> Cheers,
>
>
> _______________________________________________
> WireGuard mailing list
> WireGuard@lists.zx2c4.com
> https://lists.zx2c4.com/mailman/listinfo/wireguard
[-- Attachment #1.2: Type: text/html, Size: 2093 bytes --]
[-- Attachment #2: Type: text/plain, Size: 148 bytes --]
_______________________________________________
WireGuard mailing list
WireGuard@lists.zx2c4.com
https://lists.zx2c4.com/mailman/listinfo/wireguard
^ permalink raw reply [flat|nested] 2+ messages in thread
end of thread, other threads:[~2020-02-03 18:03 UTC | newest]
Thread overview: 2+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2020-01-09 22:05 Buggy MTU with Wireguard (attached pcapng) alpha_one_x86
2020-02-03 18:04 ` Vasili Pupkin
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).