Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
4877
Views
13
Helpful
17
Replies

Should I set MSS on ALL network devices?

Go to solution
MicJameson1
VIP Alumni
VIP Alumni

‎05-30-2023 12:53 PM

Hello.

Because this enterprise extensively utilizes DMVPN encapsulation, I am concluding that it is best to set every network device (including layer 2 switches) to tcp mss= 1360 and MTU to 1400 (1400 ma not be exactly correct, but I am providing for extra room for options).

QUESTIONS:

1. Do you agree with changing every enterprise network device to MTU=1400?

2. If I set MTU to 1400, is it still helpful, or is it unnecessary, to set tcp mss to 1360?

Thank you.

Labels:
17 Replies 17

Go to solution
MHM Cisco World
VIP
VIP
In response to Joseph W. Doherty

‎06-02-2023 08:16 AM

Can you share doc. About using 9000 frame in dmvpn.

I would like to see which router can hardware or software encrypt decrypt this huge packet.

0 Helpful

Go to solution
Joseph W. Doherty
Hall of Fame
Hall of Fame
In response to MHM Cisco World

‎06-02-2023 09:21 AM

The underlying physical network was supporting jumbo 9k.  DMVPN packets didn't exceed 1500.

With 1500 on top of 9k, no fragmentation issues.  I.e. tunnel interface 1500, physical interface 9k.

Haven't ever tried DMVPN using 9k frames, but would expect it to work, but fragmentation issues possible.

0 Helpful

Go to solution
MHM Cisco World
VIP
VIP

‎06-02-2023 08:31 AM - edited ‎06-06-2023 01:16 PM

 

this other Cisco recommendation for set tcp mss and value need. 

Screenshot (509).png

 

for the SP as I know SP use Juniper or Cisco ASR9k, both as I know only use 1500 for WAN

0 Helpful
Customers Also Viewed These Support Documents