[Openswan dev] Openswan 2.4.0rc4 instability with L2TP

Jacco de Leeuw jacco2 at dds.nl
Fri Aug 26 18:47:41 CEST 2005

Dmitriy wrote:

> I test on two kernel versions with NAT-T openswan patch  and 
> without results:
> on kernel without NAT-T patch
>    openswan without nat - NOT WORK

That can't be right (unless something significant has changed in the
NETKEY support of the latest 2.6.12 kernels). This should work fine.

> more detail result in attachments

You should use public IP addressses on external interfaces and private
addresses on the internal ones. Then you exclude these internal subnets
in virtual_private.

Jacco de Leeuw                         mailto:jacco2 at dds.nl
Zaandam, The Netherlands           http://www.jacco2.dds.nl

More information about the Dev mailing list