Ok, my problem is solved. The rule pppoe inserts doesnt work when the pppoe is a 'pppoe pass trough' feature found in Draytek Vigor series of modems. THis is because the modems translation from pppoa to pppoe sheilds the correct operation of mss negotiation. Hence :
--clamp-mss-to-pmtu
does not work and you must specify the mss manually. In my case modifying the rule to: iptables -t mangle -I FORWARD 1 -p tcp --tcp-flags SYN,RST SYN \ -j TCPMSS --set-mss 1444 works and further documentation of this issue can be found here: http://wiki.linux.net.nz/Draytek%20Vigor As far as pppoeconf goes, you are never going to be able to cover every situation, and so you probably shouldnt try. Instead of installing that rule, i would suggest not installing one at all ( especially as theres no mention at all of it doing so, and say read "here" for advice about adding a rule to your ruleset. The pppoe mss step is dated and there is no longer any ref at all to mss in dsl-provider (excpet for the misleading commented lines which dont do anything in the default kernal mode). Hence the suggestion to try 1412 if you have troubles is not clear given there is no where to set this anymore and even if you choose yes, the mss rule DOES NOT clamp mss to 1452 as stated but uses --clamp-mss-to-pmtu , and in some instances this method will fail. Thanks. P. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
