[Bug 248474] if_ipsec: NAT broken on IPsec/VTI
bugzilla-noreply at freebsd.org
bugzilla-noreply at freebsd.org
Thu Oct 1 02:15:18 UTC 2020
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=248474
--- Comment #27 from Eugene Grosbein <eugen at freebsd.org> ---
(In reply to Ziomalski from comment #26)
This is not true: "It is currently not possible to simultanously have Routed
IPsec with NAT and Policy IPsec". I have both ipsec-tools/racoon running as
IKEv1 daemon with "policy ipsec" for incoming L2TP/IPSec end-user VPNs and
strongswan as IKEv2 initiator for LAN-to-LAN "routed ipsec" (ipsec0 interface)
VPN and ipfw nat, works like a charm.
--
You are receiving this mail because:
You are the assignee for the bug.
More information about the freebsd-net
mailing list