[Openswan Users] Openswan, Windows XP behind Linksys WRT54G
router (SOLVED)
Brett Curtis
dashnu at gmail.com
Fri Aug 5 11:06:20 CEST 2005
On Aug 5, 2005, at 5:10 AM, Jacco de Leeuw wrote:
> Andrej Trobentar wrote:
>
>
>> I don't know why the VPN connection was working if there was no
>> Linksys
>> WRT54G router in front of it - the notebook was connected directly to
>> Internet.
>>
>
> NAT-T uses UDP port 4500. So if this port is firewalled, the NAT-T
> negotiation will not complete. If there is no NAT (your notebook
> directly connected) then it does not matter if UDP 4500 is blocked.
>
>
>> If I disable "IPSEC passthrought" and "L2TP passthrough" on the
>> Linksys
>> router the VPN connection does NOT work. No I have enabled these two
>> options and everything works fine...
>>
>
> I have no explanation for this. The NAT-T should be able to get
> through
> NAT routers on its own. Those NAT routers should not try to be
> 'helpful'
> by using outdated IPsec passthrough mechanisms. Perhaps the Linksys is
> different. You could try to disable one of the two settings and see
> which one does the trick.
I would like to comment on this also. I have a Linksys router of my
own at home. I need IpSec Passthrough enabled in order to connect to
my VPN with NAT-T support. I have another user with a netgear router
that can connect fine with no modifications.
NAT-T is not doing what it is suppose to (in reference to ipsec
passthrough) or Linksys routers are borked.
>
> Jacco
> --
> Jacco de Leeuw mailto:jacco2 at dds.nl
> Zaandam, The Netherlands http://www.jacco2.dds.nl
> _______________________________________________
> Users mailing list
> Users at openswan.org
> http://lists.openswan.org/mailman/listinfo/users
>
More information about the Users
mailing list