N0xFF/README.MD

Created July 27, 2022 13:11

Star () You must be signed in to star a gist
Fork () You must be signed in to fork a gist

Learn more about clone URLs
Clone this repository at <script src="https://gist.github.com/N0xFF/f6ee51a3b04b5f373ac2372e943195a0.js"></script>
Save N0xFF/f6ee51a3b04b5f373ac2372e943195a0 to your computer and use it in GitHub Desktop.

Download ZIP

MikroTik stuck on `TLS handshake, Client hello (1)`

Raw

README.MD

Problem:

curl -v https://xxx/
*   Trying x.x.x.x:443...
* TCP_NODELAY set
* Connected to xxx (x.x.x.x) port 443 (#0)
* ALPN, offering h2
* ALPN, offering http/1.1
* successfully set certificate verify locations:
*   CAfile: /etc/ssl/certs/ca-certificates.crt
  CApath: /etc/ssl/certs
* TLSv1.3 (OUT), TLS handshake, Client hello (1)

Solution:

/ip firewall mangle add out-interface=wireguard1 protocol=tcp tcp-flags=syn action=change-mss new-mss=1380 chain=forward tcp-mss=1381-65535