IPSEC NAT traversal

Scott Ullrich sullrich at gmail.com
Tue Apr 28 16:15:39 UTC 2009

On Tue, Apr 28, 2009 at 8:07 AM, VANHULLEBUS Yvan <vanhu at freebsd.org> wrote:
> See recent archives, there is actually an issue with the patchset, as
> there are no more available bits in struct inp's flags.
> We're working on that to find and implement the best solution.


Ermal Luci recently whipped the pfSense's NATT patch into shape:

I am not sure if this is how Yvan wants to solve it for the long term
but it does seem to work OK for the short term until the patch is
brought up to speed.


More information about the freebsd-net mailing list