TLS1.2 slowness

We switched ove to TLS 1.2 btween two of our integrations and things started to become too slow. We investigated various issues like slow algorithem etc but it turned out to be that new TLS 1.2 add some headers where the length is more then the default length allowed by the network TCP-MSS.

This caused packets to be dropped fixing this value improved the network performance.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s