[Openswan Users] NAT Traversal

Werner Otto werner.otto at thecloud.net
Wed Mar 30 18:21:12 CEST 2005


Hi All,

 

I am posting my first issue regarding OpenSwan 2.2.0. I installed it on
Fedora Core 3 2.6.9 kernel. I am getting messages regarding
draft-ietf-ipsec-nat-t-ike-03, draft-ietf-ipsec-nat-t-ike-02_n, these
messages relate to negotiating Nat-Traversal in the IKE. 

 

I am trying to get ESP packets from a Cisco SOHO 91 situated at
corporate A behind a Nokia Checkpoint Firewall to my VPN server as
listed above. 

 

When doing a packet trace on the public ip:

17:16:50.481456 IP 80.168.199.87 > 194.42.124.12:
ESP(spi=0x21fba68e,seq=0x5f2)

17:16:50.481618 IP 194.42.124.12 > 80.168.199.87:
ESP(spi=0xb86821fc,seq=0x63d)

 

I am getting ESP packets instead of UDP encapsulated ones. 

 

My question:

How do I enable udp encapsulation on my server

 

Regards

Werner

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.openswan.org/pipermail/users/attachments/20050330/70e8bd8a/attachment.htm


More information about the Users mailing list