[Openswan Users] Incorrect xfrm policy with both-NAT client connection

Kevin Locke kevin at kevinlocke.name
Wed Apr 21 22:02:54 EDT 2010


On Wed, 2010-04-21 at 12:55 -0400, Paul Wouters wrote:
> On Wed, 21 Apr 2010, Kevin Locke wrote:
>> I am attempting to use Openswan as a VPN client to an L2TP/IPSec VPN
>> served from a Windows SBS 2003 server where both the client and server
>> are behind NATs (ick) and am confused at (what I percieve to be) the
>> incorrect xfrm policy that is configured when the connection is
>> created.
> 
>> (version 1:2.6.23+dfsg+1 compiled with ALLOW_MICROSOFT_BAD_PROPOSAL).
> 
> Can you try openswan 2.6.25?

I can confirm that the same symptoms are present with both 2.6.25 and
the current git.

-- 
Cheers,      |  kevin at kevinlocke.name   | JIM:  kevinoid at jabber.org
Kevin        |  http://kevinlocke.name  | IRC: kevinoid on freenode


More information about the Users mailing list