Setting out TCP MSS on FTD only for non-ipsec endpoints

Views

Helpful

Replies

I found on "Firepower Management Center Device Configuration Guide", says for non-IPsec endpoints, you should disable the maximum TCP MSS on the Firepower Threat Defense device.
If I am running IPsec tunnels on my FTD, How can we achieve disabling maximum TCP MSS only for non-IPsec endpoints? I know how to disable it in its entirety using flexconfig "no sysopt connection tcpmss xxxx"

0 Replies 0

Learn, share, save

Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.

New here? Get started with these tips. How to use Community New member guide

Review Cisco Networking for a $25 gift card