Skip to main content

Verizon DSL and MTU


From Brett Charbeneau of the Tidewater UNIX Users Group:

Verizon was adjusting the Maximum Transmission Unit of all
packets on the fly on their routers - and they stopped doing that recently.

Some sites, Microsoft Update in specific, demand that the MTU be between 1400 and 1536 or they simply won't interact with a browser. Any browser. At all.

Packets that have a frame size larger or smaller than that are ignored or otherwise mangled beyond recognition by any browser I know of.

So, if you are like me and have several locations sharing Verizon DSL
circuits between lots of Windows users via an iptables-based firewall/router, Microsoft Update, mail.yahoo.com, and a bunch of other sites suddenly became inaccessible on February 9, 2009 for no apparent reason.

The fix is to set a "clamp" on packet size via a variety of iptables
commands, I like to do it in the FORWARD chain like so (all one line):

# iptables -I FORWARD -p tcp -m tcp --tcp-flags SYN,RST SYN -m tcpmss --mss 1400:1536 -j TCPMSS --clamp-mss-to-pmtu

but here are other ways to do it.

Comments

Post a Comment

Popular posts from this blog

DOS4GW.EXE Version 2.01a and Alternative DOS Extenders

DOS4GW.EXE The Tenberry DOS extender DOS4GW.EXE was used by many early DOS games. I still enjoy playing many of these games and DOS4GW.EXE is usable with DOSBox , so they can be played on Linux. However, the version of DOS4GW.EXE that was included with the game was whatever was current at the time. The most recent version that includes many bugfixes that possibly affected the games when used with DOSBox have been fixed in the latest version, 2.01a. It's not free at US$49, but you can downloaded it here . Simply substitute it for whatever version of DOS4GW.EXE your game provided and enjoy the bug-fixed goodness. Tenberry also makes a "high-performance" "pro" version of DOS4GW.EXE, but it costs $300. I think that they could sell quite a few of these to hobby users (since, you know, DOS is dead) for US$5. Open Souce to the Rescue There are better performing, free and Open Source alternatives available and worth a look. DPMI Explained Let's unders...
1 comment
Read more

Unpack those .EXE game files from GOG.com (Plus other un-packers)

I just came upon innoextract today. I have many of the wonderful games from GOG.com, some of which have native Linux Clients. Before now, I've had to use PlayOnLinux or Crossover to install these for use with WINE, then add the Linux client. InnoSetup as a way to create an installer to install the games on Windows.  Daniel Scharrer has created innoextract to allow the unpacking of those archives on a non-Windows platform. The website provides information on using innoextract , but this information from the page is very useful: GOG.com Installers GOG.com installers with a 2.x.x version number on the download page or in the filename use InnoSetup 5.5.0 and cannot be extracted by innoextract 1.2 and older. Older installers use InnoSetup 5.2.3 and usually have no version in the filename. Some GOG.com multi-part installers with version 2.1.x or higher use RAR archives (renamed to .bin) to store the game data. These files are not part of the InnoSetup installer and require...
1 comment
Read more

Medal of Honor: Allied Assault on Modern Linux

Medal of Honor: Allied Assault contains the original MOH and the two expansion packs, Spearhead and Breakthrough. MOH was first released in 2002. There is a Linux installer , released by Iculus, for the game, but it is for the original version and is a beta release. The libraries it needs are not available in a modern Linux. There is a standalone Linux binary available here . To use it, install the game on a Windows computer, patch it up to the latest level and then copy the installed game to a Linux computer. Place this downloaded archive in the root of the MOH directory and launch the game with ./mohaa_lnx . An attempt to use Crossover 16 to install the game failed as it was not possible to switch to the second DVD disc. There is a possible solution to this by creating a single DVD installation disk for MOH:AA. This process is described here . Reminder:   DVD5 = 4.70 GB DVD9 = 7.95 GB Better yet would be to create a single DVD that would encompass the original MOH...
Post a Comment
Read more