Zeitgeist

Stuff that sets my geek heart aflutter

Menu

Skip to content
  • Home
  • Contact

pmtud

MTU woes in IPsec tunnels and how you can fix it

Today I ran into a problem with IPsec Xauth PSK and the built-in Android VPN client (Android 4.1.2), resulting in some sites (such as www.yahoo.com) not loading through the VPN tunnel. Turns out I was dealing with MTU issues. When the Android VPN is started, it sets the MTU to 1500 on the tun0 interface:

Continue reading →

November 26, 2013September 5, 2014 • by Alexander Turcic • ∞

View all 9 comments

Recent Posts

  • A Linux way to disable the Virtual CD on WD disks
  • Mount an iPhone inside a KVM guest by disabling usbmuxd
  • Arial from Windows 10 doesn’t play nice with Linux
  • Google Domains invites up for grabs
  • Enabling ATA Security on a Self-Encrypting SSD

Tags

aead alphassl ata security boringssl certificates chacha20 cloud debian dns earthcam encryption google apps h264 heartbleed init.d insserv ipsec iptables javascript lenovo memcached mtu nat nginx openssl pfs pmtud samsung ssd ssl streams strongswan task manager tcpdump thinkpad vpn webcam wheezy

Archives

  • September 2017
  • June 2015
  • October 2014
  • September 2014
  • August 2014
  • May 2014
  • April 2014
  • March 2014
  • December 2013
  • November 2013
© Zeitgeist.se, 2013-2017. privacy policy