I was wondering what people think about this latest
story..
I've noticed this problem for ages (for example the
ASB's site) when viewing their pages via a GRE tunnel (or the inability
to).
Is blocking _all_ ICMP types the wrong thing to do?
(in paticular type 3 (unreacable), subtype 4(needs fragmentation) for PMTU
Discovery) and basiclly breaking their website for people who have paths
who get fragmented TCP/IP Packets)
Thanks
Craig Whitmore