[Openswan Users] Road Warrior behind NAT - Aggressive Mode: wrong NAT-T decision
Paul Wouters
paul at xelerance.com
Wed Jun 25 13:05:26 EDT 2008
On Wed, 25 Jun 2008, hiren joshi wrote:
> Is there any known issue in 2.4.9 related to wrong NAT-T detection in
> the following type of setup:
>
> RW behind NAT using aggressive mode
> openswan --- gw --- router --- NATbox --- RW
>
> openswan detects NAT-Traversal as "both are NATed" instead of "peer is NATed".
Did you enable forceecaps?
> Later on I receive,
> DPD: Serious: could not find newest phase 1 state
> DPD: Warning: received old or duplicate R_U_THERE
>
> After some time client breaks the connection due of not getting
> DPD_R_U_THERE_ACK
Looks like it might be a mixup of connections. can you upgrade to
2.4.12 and see if the problem persists. If it does, provide a link
with plutodebug=all output?
Paul
> Thanks for your time.
>
> -hiren
> _______________________________________________
> Users at openswan.org
> http://lists.openswan.org/mailman/listinfo/users
> Building and Integrating Virtual Private Networks with Openswan:
> http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155
>
More information about the Users
mailing list