Well, I my understanding discarding/fragmenting is related to two different command: "mtu" and "ip mtu"; if you configure mtu xxx and a frame is bigger then xxx,  the frame is discarded. If you configure ip mtu yyy and a packet is bigger then yyy, the packet is fragmented. Below what  find on Cisco doc:

• Interface MTU—Checked by the SPA on traffic coming in from the network. Different interface types support different interface MTU sizes and defaults. The interface MTU defines the maximum packet size allowable (in bytes) for an interface before drops occur. If the frame is smaller than the interface MTU size, but is not smaller than the minimum frame size for the interface type (such as 64 bytes for Ethernet), then the frame continues to process.
• IP MTU—Can be configured on an interface or subinterface. If an IP packet exceeds the IP MTU size, then the packet is fragmented.

http://www.cisco.com/c/en/us/td/docs/interfaces_modules/shared_port_adapters/configuration/ASR1000/ASRspasw/ASRcfget.html#pgfId-1188189

I did some test with GNS3 (see attached diagram) and read some documentation.

Firs of all I understand that:

• In the classical Cisco IOS software (not the Cisco IOS XR software), mtu <val> command, determines the maximum size of L2 payload; i.e. ip payload + ip header without L2 header;  this is different from the Cisco IOS XR software which includes both the L2 and L3 overhead in the interface mtu command. (http://www.cisco.com/c/en/us/support/docs/ios-nx-os-software/ios-xr-software/116350-trouble-ios-xr-mtu-00.html)

• ip mtu <val> command is the same as mtu but used just if the L2 payload is an ip packet; it includes L3 header (for both classical Cisco IOS software and IOS XR).

• mpls mtu <val> command determines the maximum size of an MPLS packet (payload + mpls header)

So I did some test; I configured mpls between R1-R2-R3 with mpls ldp explicit-null to avoid PHP; this way I'm sure MPLS label is always used. On R2 and R2 serials I configured:

• mtu 1000
• ip mtu 500
• mpls mtu 750

Test:

• ping from R1 to R3 with size 750 and df bit ==>doesn't  work; packet is bigger then mpls mtu and has df-bit set, so R2 discards it

• ping from R1 to R3 with size 746 and df bit ==> work; this mean that R2 doesn't chack ip mtu. I suppose because R2 dosn't work at layer 3; it just switch MPLS packets changing the Label but do nothing on IP packet. So it just check MPLS MTU

Then I remove MPLS between R2 and R3.

• ping from R1 to R3 with size 720 and df bit ==>doesn't  work; this time R2 decapsulate ip form MPLS header and encapsulate in HDLC so it checks ip mtu and discard packet

• ping from R1 to R3 with size 500 and df bit ==> work;  

Finally I tried without MPLS:

• ping from R1 to R3 with size 500 and df bit ==> work;  

• ping from R1 to R3 with size 501 and df bit ==> doesn't work;  now R2 modifies L2 frame so it checks ip mtu

So the answer to the initial question seems to be that ip mtu is used just if router has to encapsulate an IP packet over the layer 2 protocol and do tat also when routing packet not just if originates or terminates the packet.

Let me know if you agree

Bye

enrico

Yes, the MTU checking must be done before rewriting the frame. The Router should check the MTU established by the L2 technology (or configured) and decide how the packet will be fragmented (this is done by the CPU) and afterwards it should encapsulate the fragments as their corresponding L2 technology. 

So yes I agree, it is done when routing the packet.

Best regards!

JC