Date: Wed, 13 Sep 2006 15:13:43 +0200 From: VANHULLEBUS Yvan <vanhu_bsd@zeninc.net> To: freebsd-net@FreeBSD.org Subject: Re: Where is IPSec NAT-T support? Message-ID: <20060913131343.GA19069@zen.inc> In-Reply-To: <20060909203147.219ae160.nork@FreeBSD.org> References: <20060905022120.19c6d62d.nork@FreeBSD.org> <d5992baf0609041024q111de4d6t606266cf48b2d67a@mail.gmail.com> <20060904172700.W44392@maildrop.int.zabbadoz.net> <d5992baf0609041045s417548e9m732d1c4443a75702@mail.gmail.com> <20060904175127.F44392@maildrop.int.zabbadoz.net> <d5992baf0609041059k6585725bhe9a39fbae27c40c1@mail.gmail.com> <20060906070135.GA1003@jayce.zen.inc> <20060909203147.219ae160.nork@FreeBSD.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sat, Sep 09, 2006 at 08:31:47PM +0900, Norikatsu Shigemura wrote: > On Wed, 6 Sep 2006 09:01:35 +0200 [NAT-T patches] > > - The public patch (A) works for IPSEC, and should apply on both > > RELENG_6 and RELENG_6_1 (some minor patching issues may need to be > > solved by hand, but it's just some indentation changes in the source > > code between the two versions). > > - This public patch does NOT provide support for multiple peers behind > > the same NAT device. > > - I have a newer version of the patch (B), against RELENG_6_1, which > > provides such support for multiples peers behind the same NAT > > device. I was about to put it in public place when someone raised a > > discutable implementation choice in the way ipsec-tools and kernel > > exchange some datas specific to that NAT-T support (I ported it from > > Manu's work on NetBSD). > > How to get the patch(B)? I'm interesting new version of the patch. I just updated the public patch, it should be available on ipsec-tools website in a few hours (it replaces the old one, same address, MD5 sum is 81d535363981b5e84be77cbf26918ccc). [....] > I'm interesting FAST_IPSEC support:-). if Larry or someone else have quickly some time to do it, please let me know. If no one else port that (it shouldn't be too difficult, but takes some time), I'll do it "ASAP"..... Yvan. -- NETASQ http://www.netasq.com
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20060913131343.GA19069>