Does firewall re-write the Maximum Segment Size (MSS)?
| Knowledge Base ID: | KB3910 |
| Version: | 3.0 |
| Published: | 07 Oct 2008 |
| Updated: | 07 Oct 2008 |
| Categories: |
 Firewall/IPSec_VPN Traffic Engineering ScreenOS |
Does the firewall re-write the Maximum Segment Size (MSS)?
Problem or Goal:Environment:
- LAN to LAN VPN
- Device on the remote side has Maximum Segment Size smaller than the local side
No. Juniper firewalls only update Maximum Segment Size (MSS) if the proposed size is larger than configured. No modification is made if the MSS coming in is smaller.
Configuration
