[Openswan Users] status of rightprotoport=17/%any with xlt2pd, XP and Mac OS X?
Paul Wouters
paul at xelerance.com
Thu Apr 12 13:01:10 EDT 2007
On Thu, 12 Apr 2007, Clifford T. Matthews wrote:
> XP. Our successful configuration file includes the line:
>
> rightprotoport=17/1701
>
> However, documentation suggests that to also support Mac OS X, we'll
> need to use "%any" instead of "1701", i.e.,
>
> rightprotoport=17/%any
>
> However, doing that prevents our XP clients from successfully using
> the VPN.
> I've scanned the Openswan Users archives and it appears that this was
> a known bug a year ago, but more recent posts suggest that
> "rightprotoport=17/%any" works now. I didn't, however, find a post
> that explained what changed or what else must be done to get
> "rightprotoport=17/%any" to work.
>
> I'm happy to post our configuration files or even the output of ipsec
> barf, but since there's a good chance this is a known issue, I figured
> I'd see if anyone has a pointer to info I should read, first.
Can you show us a log entry of a working and a non-working connect,
using plutodebug=controlmore ?
Paul
--
Building and integrating Virtual Private Networks with Openswan:
http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155
More information about the Users
mailing list