patch for IPSEC_NAT_T
mgrooms
mgrooms at shrew.net
Thu Jun 26 17:05:16 UTC 2008
On Thu, 26 Jun 2008 11:51:26 -0500, mgrooms <mgrooms at shrew.net> wrote:
>
> ESP transport with NAT-T may need NAT-OA support, which is not
> provided by the actual patch, nor by userland.
>
I checked in Timos patch for NAT-T original address support into
ipsec-tools last December. This will be available in our 0.8 release.
http://cvsweb.netbsd.org/bsdweb.cgi/src/crypto/dist/ipsec-tools/ChangeLog.diff?r1=1.139&r2=1.140
I believe we are just missing the kernel bits on FreeBSD.
-Matthew
More information about the freebsd-net
mailing list