[Vpn-help] SSH connection hang with beta 2

[Matthew Grooms]

On 5/10/2007, "Tai-hwa Liang" <avatar at mmlab.cse.yzu.edu.tw> wrote:
>
>   This one works like a charm!  I'm curious about what trivial hack
>that could be. :)
>

It sounded like the PPPOE interconnect was the common denominator. Since
this adds a bit of overhead to the packet, I figured we were running
into a fragmentation size problem. With that in mind, I started hunting
around in the IP send code path for any bad assumptions about MTU size.
Sure enough, there was a function that used a constant 1500 byte value
in one of its calculations. The trivial hack was to drop the constant to
1492 ( or something like that ). Its a hack because the send path should
use the MTU reported by the interface instead of a constant.
Unfortunately, I'm not sure yet how difficult it will be to fix this
the right way. For 2.0, we may end up with a user modifiable tunable
that is set to 1492 by default. I should be able to get a real fix in
for 2.1 release.

A 2.0 beta 3 should be out by the end of the week. It will include the
PEM chained cert support and an MTU fix for the problem you encountered.
Any feedback you or other folks on the list could provide would be
greatly appreciated.

Thanks,

-Matthew