[Openswan Users] l2tp/ipsec not working with nat?
Jacco de Leeuw
jacco2 at dds.nl
Tue Jan 8 16:46:38 EST 2008
Abraham Iglesias wrote:
> I'm trying to establish a l2tp/ipsec tunel with windows xp sp2 and RHEL4
> A.B.C.D (ADSL router wich forwards all packets to 192.168.1.2)
So the server is behind NAT. Did you apply the registry patch to XP?
(http://www.jacco2.dds.nl/networking/win2000xp-openswan.html#NAT-T)
> conn roadwarriors
> left=192.168.1.2
You also need a leftnexthop=192.168.1.x (the internal IP address of
the ADSL router).
> leftprotoport=17/0
Could you try with leftprotoport=17/1701? AFAIK the only clients that
want leftprotoport=17/0 are non-updated Windows 2000/XP clients, and
these don't support NAT-T anyway.
Jacco
--
Jacco de Leeuw mailto:jacco2 at dds.nl
Zaandam, The Netherlands http://www.jacco2.dds.nl
More information about the Users
mailing list