Remote access VPN WSL2 packet fragmentation

May the 4th (+4)
Roadmap Session and Use Cases for
Cloud Security, SASE, and Email Security

SASE Masters:
Deploying Harmony SASE for a 6,000-Strong Workforce
in a Single Weekend

Paradigm Shifts: Adventures Unleashed!
Capture Your Adventure for a Chance to WIN!

Join the Photo Contest!

Mastering Compliance
Unveiling the power of Compliance Blade

WATCH NOW

CPX 2024 Content
is Here!

Get What You Need

Harmony SaaS
The most advanced prevention
for SaaS-based threats

LEARN MORE

CheckMates Go:
CPX 2024 Recap

LISTEN NOW

Create a Post

Hello guys,

we are facing an issue with remote access VPN and WSL2. The problem is in packet fragmentation. When a TCP packet is originated directly from the windows system it has the correct Maximum segment size value (1310). But when the packet is originated from WLS2 it has MSS 1460. The packet fragmentation does not work and for example, TSL session will fail.

We are fixing it with this workaround script in WSL.

#/bin/bash
ADVMSS=1310

DEFAULT_ROUTE=$(ip route | grep "default")
ip route del $DEFAULT_ROUTE
ip route add $DEFAULT_ROUTE advmss $ADVMSS
:
if ip route | grep -q "advmss $ADVMSS"; then
echo "MSS is ok"
else
echo "MSS is not ok"
fi

Is anyone having the same issue? What is your solution?