Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
5625
Views
0
Helpful
3
Replies

ip tcp adjust-mss on FTD with FMC

ben.levin1
Level 1
Level 1

‎08-21-2019 11:17 AM - edited ‎02-21-2020 09:25 AM

Hi all,

I'm working on setting up an IKEv2/IPSec VPN tunnel from an FTD (6.2) managed by FMC to Azure.  The tunnel is up and icmp is working fine but our server engineer is reporting issues with RDP and domain controller replication.

We're wondering if MTU or MSS could be causing these issues.  The FTD interface MTU are currently default (1500) but I don't see a way to set ip tcp-adjust mss on the FTD. I'm not sure if there's a way to do this in FMC or via the FTD command line.

Thanks.

0 Helpful
3 Replies 3

williaat0125
Level 1
Level 1
In response to Marvin Rhoads

‎03-13-2024 10:40 AM

Great link. I learned that you can disable the TCP MSS value from this link. Cisco didn't show how to do this. I'm assuming that simply setting this value to 0 disables this setting. Honestly, we prefer to allow our endpoints to use their MSS setting and not have the FTD involved.

Any thoughts?

0 Helpful

MHM Cisco World
VIP
VIP
In response to williaat0125

‎03-13-2024 10:58 AM

If you have issue make new post it is better 

MHM

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card