h3. IPSec
In my previous note I described how to get IPSec working to encrypt wireless or other traffic. I managed to get it working with triple-DES encryption but I could not get it to tunnel when using AES (and SHA1 hash). I particulary wanted to get this working to be able to tunnel my mobile-broadband connection back to base and from there out to the internet – who knows who snoops your mobile broadband traffic !
After some time playing I saw error messages in my unix log concerning MTU. So I searched and found an article about reducing MTU sizes on windows.
I reduced my MTU size to 1420 bytes and…voila…AES encryption/tunnelling works !
Simples.