On Fri, Dec 05, 2008 at 12:43:33PM -0600, Todd T. Fries wrote: > > Theory suggests that PMTUD should handle things such that fragments do not > appear, but encapsulation and tunneling via IPSec tend to generate them > anyway..
Are we not breaking PMUTD by silently dropping these? Shouldn't there be a way of implying something like 'block-policy return' ? C. -- 020 7729 4797 http://blog.playlouder.com/
