troubleshooting incoming fragment being dropped for a vpn tunnel
Posted on 2014-11-09
hello we have a third party vpn w/2048bit cert (fortinet 60C) It is directly connected to our cable modem w/static ip.
the vpn is able to send out packets to the other endpoint, broken into 1500bit and 254bit. On the return trip, the third party tech advises us that the larger packet, 1500bit makes it back, however for unknown reasons the 254bit smaller packet gets dropped.
we can't admin the 60C. it's one of these bank/fed reserve connections. however we know that the 60C is setup at 1500MTU and the modem is also 1500MTU. there is not device between the 60C and the modem, it goes direct to the modem as above. any thoughts as to what would not allow the 254bit packet back? I've been troubleshooting with the ISP and getting nowhere. thinking we'll have to change the circuit?