Re: IPSec-NAT setup using racoon2

[Norberto Meijome]

On Fri, 1 Jun 2007 18:20:01 +0530
"SethuRaman Krishnasamy" <[EMAIL PROTECTED]> wrote:

>   I would like to know if IPSec-NATT setup can
> be made using racoon2 and the procedure for the same. I'm using
> racoon2 version racoon2-20061228a

AFAIK, you need IPSEC_NATT support in the kernel. search the archives of this
list and -net@ for info on the patch for -STABLE (and -CURRENT, i think)

_
{Beto|Norberto|Numard} Meijome

"Tell a person you're the Metatron and they stare at you blankly.
 Mention something out of a Charleton Heston movie and suddenly everyone's a
Theology scholar!" Dogma

I speak for myself, not my employer. Contents may be hot. Slippery when wet.
Reading disclaimers makes you go blind. Writing them is worse. You have been
Warned.
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

IPSec-NAT setup using racoon2

[SethuRaman Krishnasamy]

Hello!

I could setup IPSec communication between two Peers in different
network  through NAT router using racoon-IKEv1. Now  I would llike to
set up IPSec communication between the peers using racoon2-IKEv2. The
documentation of racoon2 doesnt describe the procedure to configure
NAT-T parameters (in racoon2.conf file)  like ''natt_ keepalive'
,'isakmp_nattt port' .  I would like to know if IPSec-NATT setup can
be made using racoon2 and the procedure for the same. I'm using
racoon2 version racoon2-20061228a

A<--(Ikev2)--> NAT<(Ikev2)-> B

Thanks for your time.

Regards,
Sethu
___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"