Home » Mailing list archives » openbsd-misc » 2008 » June » 2

How to overwrite MSS value in SYN packets?

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]
[view in full thread]
From: B A
Subject: How to overwrite MSS value in SYN packets?
Date: Monday, June 2, 2008 - 7:35 am

Hello!

My question is how to overwrite MSS value in SYN packets?
I have read http://www.openbsd.org/faq/pf/ and found 
scrub option.

My current rule is:
scrub all no-df max-mss 1400 random-id fragment reassemble

but it's not doing what I expect. It does packet fragmentation,
and I want actual mss rewriting for outgoing SYN packets.
Something like
iptables -A FORWARD -p tcp --tcp-flags SYN,RST SYN -j TCPMSS --set-mss 1400
in linux.

Any ideas?
Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]
Messages in current thread:
How to overwrite MSS value in SYN packets?, B A, (Mon Jun 2, 7:35 am)