From: Beernink, William (william.beernink@siemens.com)
Date: Wed May 03 2006 - 11:28:42 ART
Hi Noble,
This is possibly due to an mtu size problem, which is not negotiated
during tcp setup
When the mtu size is not negotiated both parties think they can use
1500.
When using ftp or mail the df bit is possibly set. Because of that the
packets will be dropped because of the extra overhead of ipsec.
(the complete packet will be bigger then 1500 bytes)
Regards William
-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
Noble
Sent: woensdag 3 mei 2006 15:53
To: Cisco certification
Subject: OT: IPSec VPN Tunnel not allowing large data transfer
Hello GS,
I have a cisco router connected to nortel contivity box and doing IPSec
VPN
tunnel.
I am able to ping / telnet to the other side network from the Cisco
Router
side network but unable to send large mails / ftp data. I am also able
to
send small mails with few lines. My mail server and ftp server are
sitting
at Nortel Contivity Side.
Any direction to resolve this issue will be higly appreciated.
Thanks,
-Noble
This archive was generated by hypermail 2.1.4 : Thu Jun 01 2006 - 06:33:20 ART