Knowledge Search


×
 

[ScreenOS] Does firewall re-write the Maximum Segment Size (MSS)?

  [KB3910] Show Article Properties


Summary:
Does the firewall re-write the Maximum Segment Size (MSS)?
Symptoms:

Environment:

  • LAN to LAN VPN
  • Device on the remote side has Maximum Segment Size smaller than the local side
Solution:
No.  Juniper firewalls only update Maximum Segment Size (MSS) if the proposed size is larger than configured. No modification is made if the MSS coming in is smaller.
Related Links: