[Openswan Users] problems with NATed Windows clients

Tuomo Soini tis at foobar.fi
Mon Oct 26 16:45:01 EDT 2009


Marc Fisher wrote:

> The results is the same with both x.509 and psk methods. The server
> is not NATed, client is behind simple netgear router with ipsec and
> l2tp pass-through enabled (without this not a single packet reaches
> the server for some reason). Also the problem is identical on both
> Vista and XP machines. I've seen others being able to successfully
> connect to openswan with windows clients behind NAT and I simply
> cannot figure out the cause of the problems in my scenario. It has to
> be a problem with NAT-T, as everything works OK when the clients are
> not NATed. I'd be grateful for any kind of suggestion. Marc

Wild guess. Try with stupid nat box instead of netgear. If netgier has
old "ipsec passthrough" enabled you won't ever get working ipsec
connection through it without other tunneling like openvpn hiding
packets from nat router.

-- 
Tuomo Soini <tis at foobar.fi>
Foobar Linux services
+358 40 5240030
Foobar Oy <http://foobar.fi/>


More information about the Users mailing list