The vpn between NBC and Shamrock now works, but it's s-l-o-w.
Mary tried to transfer some file using ws_ftp and it was just about unusable. I read somewhere that to speed it up, you might lower the mtu size because maybe the encryption bytes added to the vpn packets push every single packet above the default mtu of 1500 and so every one is fragmented. So I lowered the mtu on both inside and outside interfaces on my PIX to 1300. I need to do the same thing to the 2600 router on the other end. We'll see if this helps.
On PIX, to change the mtu:
king200(config)# mtu outside 1300
king200(config)# mtu inside 1300
To see that changes were actually made:
show int e0
show int e1
No comments:
Post a Comment