Hi Jody,

I beg to differ on your "ip tcp adjust-mss 1452" explanation. 

This command "ip tcp adjust-mss 1452" will rather "clamp" the MSS value exchanged during the TCP 3 way handshake (tcp datagrams with SYN flag present). 

This means during first SYN sent from client, the MSS value is rewritten from what is was (commonly 1460 if standard ethernet network -> 1500-40). The corollary being the recomputation of tcp checksum. 

What causes the router to send an ICMP packet too big (in IPv6) or ICMP fragmentation needed (IPv4, type 3 code 4) is rather the PATHMTUD mechanism when MTU on path is too low and df bit is set to 1 in ip header. 

Yeah, I agree with M SEB, PMTUD mechanism uses ICMP to adjust the mtu size, and on the other hand, Adjust-mss works like an agent.

The reason why a router would send an ICMP message back to the source is that the payload size of a packet is bigger than the mtu value of the outgoing interface. 

In my opinion, both MPLS and PPPoE need to add extra tag to the frame, on is label with 4 bytes, and the other is "PPPoE header plus PPP header" with 8 bytes.

Why in the MPLS case, a router could find the mtu problem and send back the ICMP message, while in the PPPoE case, the router seems not able ?

Is that because the "PPPoE head plus PPP header" is considered as the layer 2 encapsulation so that the mtu calculation is started with the IP layer

and in the MPLS case, label is calculated in mtu along with IP layer and above

or is that because of the virtual interface used in PPPoE 

This is what happens when I post while on vacation. I get out of the head space and start mixing things up. :)

Yes, you're right. The MSS clamping can produce similar effects for TCP traffic, but it isn't the same as PMTU discovery. For PMTU discovery to work, you need to turn off ICMP rate limiting for the packet-too-big messages on each router in the path. The routers will automatically send the message when they drop the packet and as long as there's nothing limiting the reply, you should be good.

MPLS uses a 1504-byte Ethernet frame and so the payload remains 1500 bytes, so there's no need to adjust the MTU from 1500. PPPoE uses a 1500-byte Ethernet frame, leaving only 1492 bytes for the payload, necessitating the need for MTU adjustment along the way.

Theoretically, if you ran PPPoE over a 1508-byte Ethernet frame, you could run it with a fixed payload MTU of 1500 bytes, but I've never tried this.

Hi, Jody

By “MPLS uses a 1504-byte Ethernet frame and so the payload remains 1500 bytes” you mean that when I deploy MPLS, the mtu capacity of the “mpls ip” interface will automatically change to fit the length of the payload？because there could be more than one label being added.

Ideally, the MPLS MTU should be increased by four bytes for each potential label you're adding, so 1504 for MPLS and 1508 or more for MPLS VPNs. If you're not manually configuring the MPLS MTU, it's worth doing a packet capture to see what your hardware is doing.

In the GNS environment ，the MPLS mtu value won't adjust and I have got an ICMP message to notify that the payload size is greater than the outgoing link and of course the packet was dropped.

But in PPPoE environment，the packet was merely dropped without notifying the source.