1. Home
  2. pfSense® Software
  3. IPsec
  4. 2048 byte ICMP packets dropped

2048 byte ICMP packets dropped

  • B

    I have several small networks that are located remotely that connect via IPSec tunnels to our main network.

    My problem is that Windows XP uses a 2048 byte ICMP packet to determine link speed before applying Group Policy. If the packet is dropped, Group Policy does not apply. PfSense either blocks or drops these packets. I believe that it doesn't allow fragmented ICMP packets. Normal sized ping packets go through just fine.

    I do have a work around on the client side by applying a registry setting (PingBufferSize) on the clients, however, I would like to make the change on the pfSense box instead.

    Does anyone know how to allow this?

    I am using the 1.2.3 version.

    Thanks

    0
Log in to reply
 

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

© 2020 Rubicon Communications, LLC | Privacy Policy