Solved

Recommened MSS Value Setting

Posted on 2009-07-05
4
1,229 Views
Last Modified: 2012-05-07
I would like to know the recommened MSS value settings in Cisco ASA 5510.
I am using Cisco ASA 5510 to connect to internet & NATing is enabled to it.

I am getting the following alerts in the Cisco ASA. Default MSS is configured in the Cisco ASA

%ASA-4-419001: Dropping TCP packet from outside:1.1.1.1/80 to inside:2.2.2.2/59924, reason: MSS exceeded, MSS 1380, data 1460

Would like to know what is the recommended MSS settings to be configured so that the packets are not rejected.

0
Comment
Question by:SrikantRajeev
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
4 Comments
 
LVL 14

Expert Comment

by:uucknaaa
ID: 24779256
Hi

Here's a Cisco document that explains the problem and has a workaround:

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_tech_note09186a00804c8b9f.shtml

I'm checking a couple of other solutions.  I'll be back.
0
 
LVL 14

Expert Comment

by:uucknaaa
ID: 24779266
And ..

I've been reading this:

http://www.cisco.com/en/US/tech/tk870/tk877/tk880/technologies_tech_note09186a008011a218.shtml

and am wondering if the parameter needs to be adjusted in Windows?  

Check it out and see what you think?
0
 
LVL 14

Accepted Solution

by:
uucknaaa earned 500 total points
ID: 24779295
Hi

It looks like the recommended size is 1452.  There is an explanation in the usage guidelines for the command in this doc:

http://www.cisco.com/en/US/docs/ios/12_3/wan/command/reference/wan_i1g.html

Hope this all helps the problem you are seeing.
0
 
LVL 1

Author Closing Comment

by:SrikantRajeev
ID: 31599889
Thanks
0

Featured Post

Comprehensive Backup Solutions for Microsoft

Acronis protects the complete Microsoft technology stack: Windows Server, Windows PC, laptop and Surface data; Microsoft business applications; Microsoft Hyper-V; Azure VMs; Microsoft Windows Server 2016; Microsoft Exchange 2016 and SQL Server 2016.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

BIND is the most widely used Name Server. A Name Server is the one that translates a site name to it's IP address. There is a new bug in BIND (https://kb.isc.org/article/AA-01272), affecting all versions of BIND 9 from BIND 9.1.0 (inclusive) thro…
Most of the applications these days are on Cloud. Cloud is ubiquitous with many service providers in the market. Since it has many benefits such as cost reduction, software updates, remote access, disaster recovery and much more.
A short tutorial showing how to set up an email signature in Outlook on the Web (previously known as OWA). For free email signatures designs, visit https://www.mail-signatures.com/articles/signature-templates/?sts=6651 If you want to manage em…

730 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question