Return to Answer

Formatted external links

Source Link

edit approved Jun 6, 2020 at 16:42

19.1k
4
20
40

Configuring TCP-MSS ClampingConfiguring TCP-MSS Clamping in the VyOS firewall solves the problem. I suppose the WireGuard tunnel makes the maximum segment size smaller, causing PMTU discovery to fail.

https://docs.vyos.io/en/latest/routing/mss-clamp.html

set firewall options interface wg02 adjust-mss '1372'

This https://bugzilla.redhat.com/show_bug.cgi?id=1478704link is a related question with an pppoe interface, that. That discussion helped me to find the solution.

Configuring TCP-MSS Clamping in the VyOS firewall solves the problem. I suppose the WireGuard tunnel makes the maximum segment size smaller, causing PMTU discovery to fail.

https://docs.vyos.io/en/latest/routing/mss-clamp.html

set firewall options interface wg02 adjust-mss '1372'

https://bugzilla.redhat.com/show_bug.cgi?id=1478704 is a related question with an pppoe interface, that discussion helped me to find the solution.

Configuring TCP-MSS Clamping in the VyOS firewall solves the problem. I suppose the WireGuard tunnel makes the maximum segment size smaller, causing PMTU discovery to fail.

set firewall options interface wg02 adjust-mss '1372'

This link is a related question with an pppoe interface. That discussion helped me to find the solution.

Source Link

created Jun 5, 2020 at 21:06

278342304

Configuring TCP-MSS Clamping in the VyOS firewall solves the problem. I suppose the WireGuard tunnel makes the maximum segment size smaller, causing PMTU discovery to fail.

https://docs.vyos.io/en/latest/routing/mss-clamp.html

set firewall options interface wg02 adjust-mss '1372'

https://bugzilla.redhat.com/show_bug.cgi?id=1478704 is a related question with an pppoe interface, that discussion helped me to find the solution.