From owner-freebsd-net@freebsd.org  Thu Mar 31 14:57:36 2016
Return-Path: <owner-freebsd-net@freebsd.org>
Delivered-To: freebsd-net@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id E45BFAE4A07
 for <freebsd-net@mailman.ysv.freebsd.org>;
 Thu, 31 Mar 2016 14:57:36 +0000 (UTC)
 (envelope-from kurt.buff@gmail.com)
Received: from mail-io0-x244.google.com (mail-io0-x244.google.com
 [IPv6:2607:f8b0:4001:c06::244])
 (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
 (Client CN "smtp.gmail.com",
 Issuer "Google Internet Authority G2" (verified OK))
 by mx1.freebsd.org (Postfix) with ESMTPS id B189E1AD1
 for <freebsd-net@freebsd.org>; Thu, 31 Mar 2016 14:57:36 +0000 (UTC)
 (envelope-from kurt.buff@gmail.com)
Received: by mail-io0-x244.google.com with SMTP id g185so14041788ioa.0
 for <freebsd-net@freebsd.org>; Thu, 31 Mar 2016 07:57:36 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113;
 h=mime-version:in-reply-to:references:date:message-id:subject:from:to
 :content-transfer-encoding;
 bh=WtH/bITx3ZJHoFl+ecasvl3/mJMxbjG0xHiIoUxHcr8=;
 b=PA1p7RLdgs/e+rOlmihA/obdACjxbuZuiTJ5aCzp8MOxxH5A8DciEYSXWhAs6ofZkz
 vpN9CgQmLY3u0xZKw11GDHdbVEWswyPmfACB+Ec6qw90yHpD1Px0oiDdyjrA1ePiKSwv
 nk3A8caCxbfIcED0FHjx6x54vhES4B3WW4cKo58lCs8NEn6rIbuIKUbXm3SuLaPOpAGJ
 BBQGom1ANdeQlqPFnGJwZjIMql9rzIz8O9NyQZ8OUu2j73/UIaLCu09FR0egaVQb/XtT
 KhHBSNcMHhcVjltqffYis5qe80l92paJNYCEFBuV53FOPKuOeCD9yFHxaomUKLuo6/R2
 PHVg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=1e100.net; s=20130820;
 h=x-gm-message-state:mime-version:in-reply-to:references:date
 :message-id:subject:from:to:content-transfer-encoding;
 bh=WtH/bITx3ZJHoFl+ecasvl3/mJMxbjG0xHiIoUxHcr8=;
 b=GPaZMoD4unIvqA01nwCSeMoraqEl+3iDKHrY2SPM6J8TYfs9KqWDdD4QMWNI+H88/I
 4yk27w3YDZQvo+N0qptkx1SLk2AxP1mA0etdkC5sP4HAZpeJSyo91bNWNGPxci9/580d
 Id5szYXdMq4WdY4si5t2RvBvI3A47j1lTcuH+RDDifuT+wZpKjgV3pA3JIAzWhyFbWkt
 x9c1MDFMGHF42zh7TjZqSAAZRDzROV2+cI03DNizPB+GKHA4QA1aZo/f85atEwesshsG
 k5cAARScvO0Vh8apdS4vSMM8jISU8OTAvzOghJs3OIlJcDKLWkwFs81Nqfwctv63/6Jk
 0X0Q==
X-Gm-Message-State: AD7BkJJv2Ic+uSOwJRoXwk+872o4h9ek1P22wgOeHwpfTxeEh8SHDuxW+71IL5BwpRl3MdcjD4997oLTMlM6iA==
MIME-Version: 1.0
X-Received: by 10.107.7.20 with SMTP id 20mr3273679ioh.181.1459436256087; Thu,
 31 Mar 2016 07:57:36 -0700 (PDT)
Received: by 10.79.21.71 with HTTP; Thu, 31 Mar 2016 07:57:36 -0700 (PDT)
In-Reply-To: <7A244B02-7FA9-4881-ACE9-BB20B1F5D7D4@gmail.com>
References: <7A244B02-7FA9-4881-ACE9-BB20B1F5D7D4@gmail.com>
Date: Thu, 31 Mar 2016 07:57:36 -0700
Message-ID: <CADy1Ce5b+K_Tyv-rdNY5JsA5F_SsmtWUNy6O=G0ZB8vK1Shdvg@mail.gmail.com>
Subject: Re: Cannot config IPSEC
From: Kurt Buff <kurt.buff@gmail.com>
To: freebsd-net@freebsd.org
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: quoted-printable
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.21
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-net>,
 <mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net/>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-net>,
 <mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 31 Mar 2016 14:57:37 -0000

IPSec requires NAT-T.
https://en.wikipedia.org/wiki/NAT-T

On Thu, Mar 31, 2016 at 2:17 AM, =D0=90=D0=BB=D1=8C=D0=B1=D0=B5=D1=80=D1=82=
 =D0=9C=D0=B0=D0=BA=D0=BE=D0=B2=D0=B5=D0=B5=D0=B2 <makoveevaa@gmail.com> wr=
ote:
> I have read many manuals, but nothing works.
> I realized that the IPSEC does not work behind a NAT
> I realized that once this is solved but how exactly?
> I'm getting invalid lenghth of payload
> All configuration files are checked 10 times
> psk keys identical