Issues with TCP Fragmentation?
Hello,
Implementing a new system here and I seem to be getting issues with handshake failures on the front end of the F5 intermittently (seems to be timing out). The first few transactions fail, but then they start to work after that for a little bit, but after not sending any transactions for a few minutes the first few will fail again. After doing a wireshark capture, I notice there is some fragmenting going on and is probably causing a latency issue. We are using 2-way SSL on the F5 to offload it as there was issues with these terminals doing it themselves, too much latency.
In this capture, 172.27.2.74 is the F5 VIP IP. 172.27.128.66 is one of the test terminals.
I attempt to use the tcp-wan-optimzation on the front end and that seemed to pass all transactions to the servers behind the F5, but then the backend towards the servers were having handshake failures and started causing timeouts. I don't have a capture of the backend.
I tried several settings on the backend, using wan optimization on it and just the regular tcp profile, but that didn't seem to help. I'm wondering if I will have to create a custom tcp profile. I'm wondering if I need to address the MTU issue by adjusting the Window setting? I'm not 100% sure what the best way of doing that would be.
Any help would be much appreciated.
Thanks.