[Openswan Users] Is there known issues with nat-t and 2.4.1dr1?
Juha Pietikäinen
juha.pietikainen at connet.net
Fri Sep 23 10:06:58 CEST 2005
----- Original Message -----
From: "Paul Wouters" <paul at xelerance.com>
To: "Juha Pietikäinen" <juha.pietikainen at connet.net>
Cc: <users at lists.openswan.org>
Sent: Friday, September 23, 2005 8:45 AM
Subject: Re: [Openswan Users] Is there known issues with nat-t and 2.4.1dr1?
> On Fri, 23 Sep 2005, Juha Pietikäinen wrote:
>
>> Hi, I have FC1 server with Kernel 2.4.31.
>>
>> I just upgraded my Openswan from version 2.2.1 to 2.4.1dr1 with
>> pfkey_v2.c v.1.102 from cvs. Nat-t and klips patches are installed.
>>
>> I can't get L2TP/IPsec connection with X.509 certificates working with
>> nat-t
>> enabled
>> (nat_traversal=yes).
>>
>> Both xp pro client and server have public IP's.
>>
>> Same configuration worked fine with os 2.2.1 and it's nat-t and klips
>> patch.
>
> There are reported bugs that nat-t might have a few bugs and that
> transport
> mode might have a bug with path mtu. We are working on those.
>
>> It seems that nothing will get to the pluto because there isn't any
>> entries
>> in secure log, however pluto is running.
>
> That is strange though. Try adding plutodebug=all and see if anything gets
> logged?
I tried earlier with plutodebud=all without traces in secure log.
Juha Pietikäinen
More information about the Users
mailing list