From 10a4d89d3c6aa0fd71257ced19ba64db2b1301c9 Mon Sep 17 00:00:00 2001
From: "bruns@2mbit.com" <bruns@2mbit.com@e5899ace-8841-11de-95b9-8f387cfb8bc3>
Date: Fri, 14 Aug 2009 23:57:10 +0000
Subject: [PATCH] Changing out PMTU clamping iptables rule, suspect it may be a
 problem.

---
 rc.firewall | 16 ++++++++++------
 1 file changed, 10 insertions(+), 6 deletions(-)

diff --git a/rc.firewall b/rc.firewall
index 0f80b60..9ffd21d 100755
--- a/rc.firewall
+++ b/rc.firewall
@@ -32,13 +32,17 @@ done
 echo -ne "\n"
 
 if [ $CLAMPMSS ]; then
-	$IPTABLES -t mangle -o $CLAMPMSS -A FORWARD -p tcp \
-        	--tcp-flags SYN,RST SYN -m tcpmss --mss 1400:1536 \
-        	-j TCPMSS --clamp-mss-to-pmtu
+	echo "Clamping MSS to PMTU..."
+	iptables -A FORWARD -p tcp --tcp-flags SYN,RST SYN -j TCPMSS \
+		--clamp-mss-to-pmtu
 
-	$IPTABLES -t mangle -o $CLAMPMSS -A OUTPUT -p tcp \
-        	--tcp-flags SYN,RST SYN -m tcpmss --mss 1400:1536 \
-        	-j TCPMSS --clamp-mss-to-pmtu
+	#$IPTABLES -t mangle -o $CLAMPMSS -A FORWARD -p tcp \
+        #	--tcp-flags SYN,RST SYN -m tcpmss --mss 1400:1536 \
+        #	-j TCPMSS --clamp-mss-to-pmtu
+
+	#$IPTABLES -t mangle -o $CLAMPMSS -A OUTPUT -p tcp \
+        #	--tcp-flags SYN,RST SYN -m tcpmss --mss 1400:1536 \
+        #	-j TCPMSS --clamp-mss-to-pmtu
 fi
 echo -en "\n"