[Openswan Users]
NAT-T without using IKE (ie using ipsec spi, eroute)
dhiraj.2.bhuyan at bt.com
dhiraj.2.bhuyan at bt.com
Mon Jun 21 14:59:03 CEST 2004
Hello List,
As I understand, pluto can negotiate whether UDP encapsulation (for NAT traversal) is required during IKE negotiation. I am using Openswan-1.0.4 and want to set up an ipsec tunnel without using Pluto - that is by using the ipsec userland tools - ipsec spi and eroute (and route). How can I instruct klips to use UDP encapsulation while using an SPI that I build using "ipsec spi" and "ipsec eroute"?
Any help will be greately appreciated.
Thanks in advance,
Dhiraj Bhuyan
Network Security Specialist,
BT Exact Business Assurance Solutions
Tel: +44 1473 643932
Mob: +44 7962 012145
Email: dhiraj.2.bhuyan at bt.com
More information about the Users
mailing list