02-26-2020
Quote:
Originally Posted by
MadeInGermany
I wonder why the shown MTU is 1460 while the standard is 1500.
But if your LAN switch/router works better with 1460 then try to set it on the other box, too.
I remember a similar issue (severe packet loss), where all Linux systems had the standard MTU 1500. The LAN guy changed the MTU on the LAN switch (or router?), and that fixed it.
Google Cloud mandates this MTU:
Quote:
Gateway MTU vs. system MTU
You must configure your peer VPN gateway to use a MTU of no greater than 1460 bytes. A value of 1460 bytes is recommended because that matches the default MTU setting for Google Cloud VM instances.
The effective MTU for peer systems and Google Cloud VMs is typically lower than the MTU of your VPN gateway:
For TCP traffic, MSS clamping rewrites the SYN packet of the initial TCP handshake. This allows systems to dynamically adjust Maximum Segment Size (MSS) to accommodate encapsulation.
For UDP traffic, Path MTU Discovery (PMTUD) can negotiate smaller MTU sizes, under certain circumstances, provided that your firewall permits ICMP traffic.
REF:
MTU considerations | Cloud VPN | Google Cloud
9 More Discussions You Might Find Interesting
1. IP Networking
As a rule of thumb in doing calculations, what figure would you use in Mbytes/sec? I know the answer varies grealty on the topolgy of the network but I wonde what newteok engineers use a rough rule of thumb?
Many thanks. (1 Reply)
Discussion started by: debd
1 Replies
2. IP Networking
I have a 10Gbps network link connecting two machines A and B. I want to transfer 20GB data from A to B using TCP. With default setting, I can use 50% bandwidth. How to improve the throughput? Is there any way to make throughput as close to 10Gbps as possible? thanks~ :) (3 Replies)
Discussion started by: andrewust
3 Replies
3. UNIX for Dummies Questions & Answers
Hi
I'm wondering what are the differences between SOLARIS, AIX and RHEL ?
I would like to know in which operating system is best for what kind of implementation ?
Why some companies use Solaris instead of e.g. AIX and etc. ?
thx for help. (1 Reply)
Discussion started by: presul
1 Replies
4. AIX
Hi,
I'm able to migrate UNIX users/groups from Solaris to AIX (with same password using 13-char encrypted password from shadow file) but no luck with RHEL 5 to AIX.
I see encrypted password in RHEL 5 is bit lengthier than 13-char. Is there any way to convert encrypted password such that same... (1 Reply)
Discussion started by: reddyr
1 Replies
5. AIX
Hello All
I have a system running AIX 61 shared uncapped partition (with 11 physical processors, 24 Virtual 72GB of Memory) .
The output from NMON, vmstat show a high run queue (60+) for continous periods of time intervals, but NO paging, relatively low I/o (6000) , CPU % is 40, Low network.... (9 Replies)
Discussion started by: IL-Malti
9 Replies
6. Red Hat
Hi team
I have three physical servers running on Red Hat Enterprise Linux Server release 6.2 with the following memory conditions:
# cat /proc/meminfo | grep -i mem
MemTotal: 8062888 kB
MemFree: 184540 kB
Shmem: 516 kB
and the following swap conditions:
... (6 Replies)
Discussion started by: hedkandi
6 Replies
7. UNIX for Advanced & Expert Users
I have started a new job which requires AIX admin skills, which I have, and RHEL skills. Does anyone have a cheat sheet that if I know how to solve the problem in AIX how would I do that in RHEL? I was an IBM pre-sales technical trying to keep sales guys honest - not possible. Any other links to... (5 Replies)
Discussion started by: SpenceSnyder
5 Replies
8. Shell Programming and Scripting
Greetings Experts,
We are migrating from AIX to RHEL Linux. I have created a script to verify and report the NULLs and SPACEs in the key columns and duplicates on key combination of "|" delimited set of big files. Following is the code that was successfully running in AIX.
awk -F "|" 'BEGIN {... (5 Replies)
Discussion started by: chill3chee
5 Replies
9. AIX
We found out that the Spectrum Scale (GPFS) doesnt support mix nodes (AIX and RHEL) on direct attached storage.
Is there any other options besides NFS for mix O/S? Trying to avoid network type of shared filesystem which might end up high traffic on IO because we do run backup jobs on those... (0 Replies)
Discussion started by: kiasu
0 Replies
LEARN ABOUT OPENSOLARIS
synos
synos(1) Mail Avenger 0.8.3 synos(1)
NAME
synos - guess operating system from TCP SYN fingerprint
SYNOPSIS
synos [--mtu mtu] [--db path] syn-fingerprint
DESCRIPTION
synos takes a SYN fingerprint, in the format described for the CLIENT_SYNFP environment variable in the avenger(1) man page, and outputs a
guess as to the type of the client operating system. synos makes use of the OpenBSD SYN fingerprint database (which is also repackaged
with Mail Avenger).
OPTIONS
--mtu val
Certain operating systems set the initial TCP window size based on the maximum transmission unit, or MTU, of the network. For such
operating systems, synos usually checks the window size using both the client's MSS option plus 40 bytes (for TCP and IP headers), or a
hard-coded MTU, which defaults to 1,500 bytes. If either value works, the fingerprint is considered to match the operating system.
You can change the value 1,500 by specifying this option. A value of 0 tells synos to use only the value derived from the MSS option.
--db file
Specifies an alternate location for the SYN fingerprint database.
FILES
/usr/local/share/pf.os
Default location of SYN fingerprint database.
SEE ALSO
avenger(1), asmtpd(8)
The Mail Avenger home page: <http://www.mailavenger.org/>.
The OpenBSD home page: <http://www.openbsd.org/>.
BUGS
The operating system type is determined by heuristics that are not always reliable. Moreover, not all operating systems can be
distinguished. The database may not even contain a client's particular operating system and version.
It is not hard to fool synos deliberately by changing TCP socket options or injecting raw packets onto the network.
AUTHOR
David Mazieres
Mail Avenger 0.8.3 2012-04-05 synos(1)