Hi Guys
we appear to be having issues accessing some webservers using https over a vpn between 2 sites.
We have done some packet analsys and it appears to be when the https handshake is done, the servers certificate exchange packets dont appear to make it to the pc requesting the webpage.
As with most traffic these days, the DF bit is set in the packet.
When we lower the mtu on the pc or the inside interface of the firewall the issue appears to go away.
This is obviously not good practice, when we lower the mtu on the outside interface it does not work, so it must not be applying to the vpn.
Any ideas what the best thing to do for this?
cheers
Carl