Hi All, We have the below scenario. Devices are IPsec tunnel mode configured. Ref device sends fragmented ping requests. Our device responds with unfragmented ping response. Router send packet too big with proposed MTU as 1280 and payload as ESP packet number 3. As soon as our device receives the Packet Too Big ICMPv6 packet, device becomes unresponsive for the next ping request from ref device. However our device is responding for ISAKMP informational messages from the ref device. Has anyone experience such issues. Our device configuration are Linux 4.9.180 #1 SMP PREEMPT Fri Oct 23 23:29:20 America 2020 aarch64 GNU/Linux. Any inputs are appreciated.
Our device Router Ref device PKt Num <------------------------------ |---------------- Fragmented Ping Request 1 (ESP) <------------------------------ |---------------- Fragmented Ping Request 2 (ESP) -------------------------------- |---------------> Unfragmented ping response 3 (ESP <------------------------------ | 4 (non ESP) (Packet too big) <------------------------------ |---------------- Fragmented Ping Request 5 (ESP) <------------------------------ |---------------- Fragmented Ping Request 6 (ESP) Regards, Jayalakshmi