Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
610
Views
0
Helpful
1
Replies

problem printing across an ipsec-secured link

k.adepetu
Level 1
Level 1

‎04-18-2006 12:50 AM - edited ‎02-21-2020 02:22 PM

The vsat link between locationA to LocationB have been secured using ipsec. I have a problem printing across an ipsec-secured link. Every other traffic flows correctly but when i try printing from locationA to LocationB, only the first line prints. the other lines fail to print. When i remove ipsec from the routers, the printing is successful. I would appreciate any suggestions. thanks

Labels:
0 Helpful
1 Reply 1

Richard Burts
Hall of Fame
Hall of Fame

‎04-20-2006 08:23 PM

I wonder if the problem is a max packet size issue. When applying IPSec the headers that are added to the packet increase the size of the packet. If the packet being sent from the end station is already max size (or close to it) the IPSec headers may make the packet too large. If the do not fragment bit is set (as it frequently is on TCP packets) it will cause the packet to be discarded.

A solution for this problem that I have used with success is to configure ip tcp adjust-mss on the LAN interface where end station traffic enters and leaves the router. You may need to experiment some to find the optimum size. In situations where I use IPSec with GRE I have found a value about 1375 to be optimum. You can experiment and see what is best in your situation.

HTH

Rick

HTH

Rick
0 Helpful
Customers Also Viewed These Support Documents