[Openswan Users] OpenSWAN - so dang hard to implement?! Help!

Michael Richardson mcr at sandelman.ottawa.on.ca
Mon Mar 1 17:58:45 CET 2004


-----BEGIN PGP SIGNED MESSAGE-----


>>>>> "Doran" == Doran Barton <fozz at iodynamics.com> writes:
    Doran> No, I didn't know about that... I gave up on trying to get
    Doran> 2.0.0 working because I assumed NAT-T was not applied in
    Doran> 2.0.0. The reason I thought this is because I installed the
    Doran> ATRPMs build of openswan 2.0.0 and when I put
    Doran> "nat_traversal=yes" in ipsec.conf, I got errors:

  2.0.0 does not have NAT-traversal.
  2.1.0 will.

  There are two minor bugs in it that are keeping us from doing a full
release. They do not affect VPN usage in a significant way.

  (The first packet on any on-demand tunnel, i.e. "ipsec auto --route
foo" is lost. This affects OE)

]       ON HUMILITY: to err is human. To moo, bovine.           |  firewalls  [
]   Michael Richardson,    Xelerance Corporation, Ottawa, ON    |net architect[
] mcr at xelerance.com      http://www.sandelman.ottawa.on.ca/mcr/ |device driver[
] panic("Just another Debian GNU/Linux using, kernel hacking, security guy"); [
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.2 (GNU/Linux)
Comment: Finger me for keys

iQCVAwUBQEPAJIqHRg3pndX9AQGmawP/f2kWE/hyKvHS7b+oSkVTwiezt3Qq5qJS
S2Bex3H2QQUwZp1cydqL2lwuZqfKyfVcSk2HBwJvlQyfiKJqhfgYD4doZTTgWgfr
0CkXyF5aRAfFFV+hHhwEYbck8/W43qyasiMVuxBY8fShgjA9KGnbjan+TfH3CZw1
p4N8T2fl+wo=
=fRbx
-----END PGP SIGNATURE-----


More information about the Users mailing list