[Openswan Users] l2tp client with NAT
Михаил Иванов
ivans at isle.spb.ru
Sat Jan 1 13:47:43 CET 2005
Ah, THANKS!!
My fault.
Evidently I was reading the NAT-T related parts of your document "diagonally" :-)
Sorry about that.
Now everything works, thank you once again!
On Friday 31 December 2004 02:19, Jacco de Leeuw wrote:
>
> Ivan wrote
>
> > I want to set up l2tp/ipsec vpn.
> > But when I put the client behind NAT gateway
> > the ipsec connection cannot be established.
> > Windows client has SP3 installed, so the nat traversal
> > update should be present.
>
> No, the NAT-T update is not included in SP3 for Windows 2000.
> You need to download and install Q818043. The update is included
> in SP2 for Windows XP, however.
>
> > [@VPN_SERVER]:17/0...cg.cg.cg.cg[Client's CN]:17/1701
> ^^^
> This is an indication that the NAT-T update has not been installed.
> Otherwise it would have been 17/1701.
>
> > But I observe no ESP traffic from VPN server to client.
>
> With the NAT-T update there might not be any ESP traffic
> (IP 50). It may be encapsulated in UDP 4500.
>
> Jacco
--
\ / | |
(OvO) | Михаил Иванов |
(^^^) | Тел.: +7(911) 221-1300 |
\^/ | E-mail: ivans at isle.spb.ru |
^ ^ | |
More information about the Users
mailing list