[Openswan Users] Any known problems with NAT Traversal with Linux 2.4.26/2.6.7?

Herbert Xu herbert at gondor.apana.org.au
Thu Jul 22 09:08:37 CEST 2004

On Wed, Jul 21, 2004 at 02:31:24PM +0100, Toby Corkindale wrote:
> How immediate is "immediately"?
> A couple of minutes later, I still see this present:
> udp      17 161 src= dst= sport=4500 dport=4500 src= dst= sport=4500 dport=4500 [ASSURED] use=1
> (That was after grepping for the remote IP ( I have removed
> the rest, which I believe are unrelated lines, as the server is quite busy and
> ip_conntrack is quite long)

What if you grep for 192.168?
> If it's useful to know:
> This server is running kernel 2.4.26 w/OpenSwan KLIPS 2.1.4, and includes the
> NAT-T kernel patch.

Since you don't have any NAT rules, this looks like a kernel bug.
Would it be possible to try running 2.6 or 2.4.26+26sec on the server?
Visit Openswan at http://www.openswan.org/
Email: Herbert Xu ~{PmV>HI~} <herbert at gondor.apana.org.au>
Home Page: http://gondor.apana.org.au/~herbert/
PGP Key: http://gondor.apana.org.au/~herbert/pubkey.txt

More information about the Users mailing list