Hi all,
I have configured a site-to-site IPSEC/L2TP VPN between to RouterOS devices. I have a full 1500 MTU path between the two devices, and L2TP MTU is currently set to 1500.
I have noticed if I send a large ping for example, the resulting ESP packet is fragmented. Should I preventing fragmentation? If so, where?
I noticed / ip ipsec policy used to have the option
dont-fragment=
but this is no longer the case.
Any ideas?
Thanks