Hello IPSEC users. Does anybody use Windows Client (nativ or Sentinel 1.4) over NAT device ??
<My Windows Client 192.168.0.2>...[192.168.0.1 NAT device 217.99.x.x].... <<Internet>>...<My FreeSWAN>(2.0 with NATT and x509 patch) I can establish IpSec connection normally (via udp 500 etc) but problem occurs when I wan't to ping to the FreeSWAN subnet. Packets goes out from Client in ESP and loose on Nat device. In my opinion packet should go by UDP. Am I right ? Ewentually how to correct this thing ? I do not have this problem if Client is not from local IP but directly from public. Greetings Sawo #./espinudp-check Checking for ESP in UDP IKE Support (ESPinUDP(1)): Yes Checking for ESP in UDP ESP Support (ESPinUDP(2)): Yes Kernel Supports NAT Traversal: Yes # from tcpdump: 00:20:02.065357 Clent > FreeSWAN: ESP(spi=0x6bf1eac9,seq=0x10) 00:20:03.062106 Clent > FreeSWAN: ESP(spi=0x6bf1eac9,seq=0x11) ... _______________________________________________ FreeS/WAN Users mailing list [EMAIL PROTECTED] https://mj2.freeswan.org/cgi-bin/mj_wwwusr
