[Openswan Users] Win2k / XP (behind NAT) rekeying issue
Igmar Palsenberg
maillist at jdimedia.nl
Thu May 26 14:11:28 CEST 2005
Hi,
> http://lists.openswan.org/pipermail/users/2005-April/004556.html
> http://lists.openswan.org/pipermail/dev/2005-May/000894.html
>
> also seems to bite me :( When rekeying occurs (after an hour by default),
> it fails, and the connection dies. The patch also mention for 2.2.0 is
> useless in 2.3.x due to extensive changes.
While attempting to find out what is actually going on I've noticed that
the rekeing occurs over UDP 500 -> UDP 500. Win2k doesn't even seem to
nice this.
The standard makes me believe that it should at least send it to port
4500, not 500. Can anyone who knows the NAT-T standard (or draft,
since win2k seend to use draft 2) enlighten me on this ?
Regards,
Igmar
More information about the Users
mailing list