On 2009-04-07, Dirk Mast <condo...@gmail.com> wrote: > Dan Carley wrote: > >> Technically it won't be relayd that is the cause of your woes because it >> is PF will be performing the grunt work of the TCP redirection. >> >> Based on what Brian said, you may find that playing with 'scrub out' and >> 'max-mss' in your PF rules alleviates the issue. > > Which will soon be no longer.
so then play with "scrub (max-mss ###)" instead. you can either use this on your pass rules, or with the new match rules. http://www.openbsd.org/faq/current.html#20090406 http://marc.info/?m=123901961726016 this will be hitting snapshots soon.
