[Openswan Users] Openswan, Windows XP behind Linksys WRT54G router (SOLVED)

Brett Curtis dashnu at gmail.com
Fri Aug 5 11:06:20 CEST 2005


On Aug 5, 2005, at 5:10 AM, Jacco de Leeuw wrote:

> Andrej Trobentar wrote:
>
>
>> I don't know why the VPN connection was working if there was no  
>> Linksys
>> WRT54G router in front of it - the notebook was connected directly to
>> Internet.
>>
>
> NAT-T uses UDP port 4500. So if this port is firewalled, the NAT-T
> negotiation will not complete. If there is no NAT (your notebook
> directly connected) then it does not matter if UDP 4500 is blocked.
>
>
>> If I disable "IPSEC passthrought" and "L2TP passthrough" on the  
>> Linksys
>> router the VPN connection does NOT work. No I have enabled these two
>> options and everything works fine...
>>
>
> I have no explanation for this. The NAT-T should be able to get  
> through
> NAT routers on its own. Those NAT routers should not try to be  
> 'helpful'
> by using outdated IPsec passthrough mechanisms. Perhaps the Linksys is
> different. You could try to disable one of the two settings and see
> which one does the trick.

I would like to comment on this also. I have a Linksys router of my  
own at home. I need IpSec Passthrough enabled in order to connect to  
my VPN with NAT-T support. I have another user with a netgear router  
that can connect fine with no modifications.

NAT-T is not doing what it is suppose to (in reference to ipsec  
passthrough) or Linksys routers are borked.


>
> Jacco
> -- 
> Jacco de Leeuw                         mailto:jacco2 at dds.nl
> Zaandam, The Netherlands           http://www.jacco2.dds.nl
> _______________________________________________
> Users mailing list
> Users at openswan.org
> http://lists.openswan.org/mailman/listinfo/users
>



More information about the Users mailing list