Help
FortiGate CNF Getting Started Resources
Mrrobot7
New Contributor

Created on ‎09-19-2024 06:54 AM

TCP MSS issue

Please refer the below topology,


Client >>> Cisco router >>> Firewall  >>> Upstream device >>> server

I have set mtu as 200 in my upstream device  and as exepected when client access the server(http) the packets are fragmented.
However when I set tcp-mss(in my case to 55)on my Firewall, I can see it is successfully shared(updated mss) on 3 way handshake, However I can still see client or server is sending MSS more than 55 which is causing fragmentation.

Is it expected?Kindly help

706
0 Kudos
0 REPLIES 0
Announcements

Welcome to your new Fortinet Community!

You'll find your previous forum posts under "Forums"

Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.