[Openswan dev] [PATCH] Force NAT-T per connection
Nate Carlson
natecars at natecarlson.com
Sat Jun 26 21:53:39 CEST 2004
On Sun, 27 Jun 2004, Ken Bantoft wrote:
> It works in that my client forces the encaps, but since the other side
> thinks there is no NAT, it doesn't respond. I think this is correct, in
> that force sides will need to force it (have forceencaps=yes) on the
> conn for this to work.
>
> Nate, your patch had the same requirements, correct?
Actually, no - with the patch I submitted, the other end thought it was
NAT'd, without having the forceencaps global option enabled.
What I did is turned 'FORCE_NAT_TRAVERSAL' into a runtime-configurable
option.
------------------------------------------------------------------------
| nate carlson | natecars at natecarlson.com | http://www.natecarlson.com |
| depriving some poor village of its idiot since 1981 |
------------------------------------------------------------------------
More information about the Dev
mailing list