Messages

1

17.1 Legacy Series / Re: Fragmented UPD not send over IPSEC tunnel

« on: June 28, 2017, 12:40:39 pm »

Have you modified the MTU on the Fortigate policy?

you can modify it per policy:

config firewall policy
edit xxx
set tcp-mss-sender 1436

You'll need to calculate the MSS and edit the 1436 number depending on what you're connected by on the interface the Fortigate is using for the IPSec tunnel.