We have been using a Verizon Business Gateway for a while working successfully in passthrough mode by hard setting the MTU to 1428 and setting MSS clamping to 1360 on outbound traffic. However, we got a new Verizon Business Gateway with a new SIM on the new 200mbps plan, but setting the MTU to 1428 and MSS to 1360 (or even both to 1200) no longer fixes some routing/tcp traffic issues to some sites. My guess is this is some quirk of how Verizon is doing Carrier NAT.
Details on reddit of this known issue with Verizon gateways in passthrough mode:
https://www.reddit.com/r/verizonisp/comments/174zg0s/ip_passthrough_issue_some_websites_wont_load_or/
Specifically we see SSL errors when loading https://portal.merchantware.net/ and when running tap/chip credit card transactions on the terminals.
My question is just, do we need to order different service from Verizon Business, just add a static IP to this service, or is there a known list of plans from Verizon Business that work properly with the BR1 5G in passthrough mode?
We need passthrough mode for site-site VPN to other sites with enterprise firewalls.
I tried searching for ‘verizon’ and ‘passthrough mode’ here but didn’t find anything relevant to this specific scenario.
To be clear most websites work, it’s just some that have issues. Passing any other WAN (Comcast, local ISP) through the BR1 5G or our other enterprise firewalls works fine.
Cheers