Date: Fri, 18 Oct 2002 22:11:55 +0800 From: Michael Choo <mikechoo@opensos.net> To: owner-freebsd-net@FreeBSD.ORG, Matthew Zahorik <matt@hottub.org> Cc: freebsd-net@FreeBSD.ORG Subject: Re[2]: IPSEC/NAT issues Message-ID: <4510281043.20021018221155@opensos.net> In-Reply-To: <Pine.GSO.4.40.0210180628271.5762-100000@hottub> References: <Pine.GSO.4.40.0210180628271.5762-100000@hottub>
next in thread | previous in thread | raw e-mail | index | archive | help
Hello Matthew, Friday, October 18, 2002, 9:39:51 PM, you wrote: MZ> On Fri, 18 Oct 2002, Andrew P. Lentvorski wrote: >> You cannot NAT an IPSEC packet. NAT rewrites the IP headers and the >> packet will get rejected when it reaches the other IPSEC node. MZ> Not exactly true. I use a Windows Nortel Contivity client behind NAT just MZ> fine. Yup, I use a Windows Nortel Contivity client behind a FreeBSD userland PPP NAT just fine too. -- Best regards, Michael mailto:mikechoo@opensos.net To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4510281043.20021018221155>