Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Highlighted
Collaborator

Can anyone tell me what the default mtu behavior is like on a checkpoint?

So this is something I just wanted to know, I do know that the default value on the interfaces is 1500 but is it possible to check the mtu details in the log for each connection? Because the normal logs do not have anything related to mtu, also can't find much about mtu when I search online for checkpoints.

 

Thanks and regards.

0 Kudos
2 Replies
Highlighted
Champion
Champion

The MTU is 1500 by default unless you change it, this is nothing that the Check Point software has to deal with. Do remember that the MTU is just the total packet size and had nothing to do with the MSS which is the actual value you want to know, the value that shows how much data a packet can transfer, this is shown in the SYN and SYN-ACK packet and can be altered by setting up MSS clamping.
When you want a full picture abiout MTU, MSS path MTU Discovery and MSS Clamping read this article:
https://www.cisco.com/c/en/us/support/docs/ip/generic-routing-encapsulation-gre/25885-pmtud-ipfrag.h...


When you want to know how to deal with it in Check Point see SK 101219.
For testing a specific connection for the MSS use a free program called TCPoptimizer and use the MTU/Latency page to find the largest MTU for the connection you want to know. The MSS value is calculated by taking the Largest MTU and substracting 40 from it for the IP and TCP headers.

Regards, Maarten
Highlighted
Collaborator

Thank you so much really appreciate it!
0 Kudos