I'm trying to clear the DF bit for a single tunnel on my Cisco ASA firewall.
I tried "crypto map map 1 set df-bit clear-df", but the partner says the decapsulated packets are still arriving with DF bit set.
Does anyone have any experience with that? Does the IKE version matter for this?
Thanks!
No comments:
Post a Comment