Hi, On Mon, Sep 04, 2017 at 03:25:02PM +0100, Stuart Dallas wrote: > The VPN is established quite happily at their site and unencrypted traffic > through that VPN works perfectly (HTTP requests). > > However, encrypted traffic does not (HTTPS and SSH). SSH connections get this > far before appearing to hang:
I'd assume that this has something to do with the compressibility of
inside traffic, and fragments getting lost (-> SSH KEX is a big packet,
which will end up larger than a full 1500 byte packet after OpenVPN,
so gets fragmented - and if the network is broken enough, fragments
get lost).
Try --mssfix 1200 on client or server.
gert
--
USENET is *not* the non-clickable part of WWW!
//www.muc.de/~gert/
Gert Doering - Munich, Germany g...@greenie.muc.de
fax: +49-89-35655025 g...@net.informatik.tu-muenchen.de
signature.asc
Description: PGP signature
------------------------------------------------------------------------------ Check out the vibrant tech community on one of the world's most engaging tech sites, Slashdot.org! http://sdm.link/slashdot
_______________________________________________ Openvpn-users mailing list Openvpn-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-users
