[Openswan Users] Error:Informational Exchange is for an unknown (expired?) SA
Tuomo Soini
tis at foobar.fi
Fri Mar 30 15:25:08 EDT 2012
On Fri, 30 Mar 2012 18:34:11 +0530
SaRaVanAn <saravanan.nagarajan87 at gmail.com> wrote:
> Hi,
> It seems , dynamic update of the other ends IP address in NAT
> traversal is not supported in OpenSwan.
> According to rfc4306, it should be supported as part of NAT traversal.
> Please find the topology and issue I m facing out of this.
Yes. that's propably true. Only change of the nat-t port is supported
currently. Getting NAT-T support in IKEv2 would be a higher priority
currently.
Though if you do part of the work, someone with openswan would probably
help and pick it up.
Alternatively, asking one of the openswan developers or asking the
mailing list for any companies to see if they are available to
implement this as a support contract is an option available to you.
> Do Openswan have planned to implement dynamic IP address update
> feature in NAT-T ??
Patches are very welcome.
--
Tuomo Soini <tis at foobar.fi>
Foobar Linux services
+358 40 5240030
Foobar Oy <http://foobar.fi/>
More information about the Users
mailing list