Date: Thu, 7 Apr 2005 17:31:39 +0000 (UTC) From: "Bjoern A. Zeeb" <bzeeb-lists@lists.zabbadoz.net> To: John Mok <jmok@attglobal.net> Cc: tms3@fsklaw.com Subject: Re: FreeBSD Firewall + NAT Traversal + IPsec Message-ID: <Pine.BSF.4.53.0504071730520.1942@e0-0.zab2.int.zabbadoz.net> In-Reply-To: <42556B7E.5030703@attglobal.net> References: <42555C87.7030700@attglobal.net> <425550E6.3080005@fsklaw.com> <42556B7E.5030703@attglobal.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On Fri, 8 Apr 2005, John Mok wrote: Hi, > Thank you for your quick reply. > > I would like to know more on the issue. To my understanding, since the > source address of the IP packet from the client would be modified on the > NAT, normally it would fail AH check on the IPsec VPN gateway, or the > FreeBSD NAT has built-in compliance with RFC3947? NAT-T is not supported by FreeBSD. -- Bjoern A. Zeeb bzeeb at Zabbadoz dot NeT
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.53.0504071730520.1942>