[Openswan dev] "NAT-Traversal: Result using 3"
Jacco de Leeuw
jacco2 at dds.nl
Thu Nov 2 08:34:20 EST 2006
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
With an RFC 3947 compliant initiator I get the following when connecting
to Openswan:
~ NAT-Traversal: Result using 3: peer is NATed
It appears that this was introduced in 2.4.2. One would have expected:
~ NAT-Traversal: Result using RFC 3947 (NAT-Traversal): peer is NATed
The following patch appears to correct this. After applying the patch
I connected with a draft-02 client and an RFC 3947 client and the results
were now as expected. I do not have access to a non-updated Mac (and I would
rather not roll back to an old MacOS X version) so I could not test with
a "draft-ietf-ipsec-nat-t-ike (MacOS X)" client.
Jacco
- --- lib/libopenswan/constants.c.org 2005-06-23 03:45:55.000000000 +0200
+++ lib/libopenswan/constants.c 2006-11-02 12:12:51.000000000 +0100
@@ -916,8 +916,8 @@
~ const char *const natt_type_bitnames[] = {
~ "draft-ietf-ipsec-nat-t-ike-00/01", /* 0 */
~ "draft-ietf-ipsec-nat-t-ike-02/03",
- - "RFC 3947 (NAT-Traversal)",
- - "3", /* 3 */
+ "draft-ietf-ipsec-nat-t-ike (MacOS X)",
+ "RFC 3947 (NAT-Traversal)", /* 3 */
~ "4", "5", "6", "7",
~ "8", "9", "10", "11",
~ "12", "13", "14", "15",
- --
Jacco de Leeuw mailto:jacco2 at dds.nl
Zaandam, The Netherlands http://www.jacco2.dds.nl
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFFSfPc0GeQNf03tTcRAtnXAKCes3cBPHQzvhb6wpx61rsb9VIKcQCfcAW0
Zi9zctM/QZCJ6W9/HSdquh8=
=+vE5
-----END PGP SIGNATURE-----
More information about the Dev
mailing list