From owner-freebsd-stable@FreeBSD.ORG  Sat Apr 14 16:59:20 2012
Return-Path: <owner-freebsd-stable@FreeBSD.ORG>
Delivered-To: stable@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id EADE21065780
	for <stable@freebsd.org>; Sat, 14 Apr 2012 16:59:20 +0000 (UTC)
	(envelope-from bzeeb-lists@lists.zabbadoz.net)
Received: from mx1.sbone.de (mx1.sbone.de [IPv6:2a01:4f8:130:3ffc::401:25])
	by mx1.freebsd.org (Postfix) with ESMTP id A01D08FC12
	for <stable@freebsd.org>; Sat, 14 Apr 2012 16:59:20 +0000 (UTC)
Received: from mail.sbone.de (mail.sbone.de [IPv6:fde9:577b:c1a9:31::2013:587])
	(using TLSv1 with cipher ADH-CAMELLIA256-SHA (256/256 bits))
	(No client certificate requested)
	by mx1.sbone.de (Postfix) with ESMTPS id C7B0125D3A00;
	Sat, 14 Apr 2012 16:59:19 +0000 (UTC)
Received: from content-filter.sbone.de (content-filter.sbone.de
	[IPv6:fde9:577b:c1a9:31::2013:2742])
	(using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits))
	(No client certificate requested)
	by mail.sbone.de (Postfix) with ESMTPS id F0E9ABE4D58;
	Sat, 14 Apr 2012 16:59:18 +0000 (UTC)
X-Virus-Scanned: amavisd-new at sbone.de
Received: from mail.sbone.de ([IPv6:fde9:577b:c1a9:31::2013:587])
	by content-filter.sbone.de (content-filter.sbone.de
	[fde9:577b:c1a9:31::2013:2742]) (amavisd-new, port 10024)
	with ESMTP id NCRqPkxyRSSc; Sat, 14 Apr 2012 16:59:18 +0000 (UTC)
Received: from orange-en1.sbone.de (orange-en1.sbone.de
	[IPv6:fde9:577b:c1a9:31:cabc:c8ff:fecf:e8e3])
	(using TLSv1 with cipher AES128-SHA (128/128 bits))
	(No client certificate requested)
	by mail.sbone.de (Postfix) with ESMTPSA id 1A59ABE4D57;
	Sat, 14 Apr 2012 16:59:17 +0000 (UTC)
Mime-Version: 1.0 (Apple Message framework v1084)
Content-Type: text/plain; charset=us-ascii
From: "Bjoern A. Zeeb" <bzeeb-lists@lists.zabbadoz.net>
In-Reply-To: <4F87AB6F.4050504@gmail.com>
Date: Sat, 14 Apr 2012 16:59:16 +0000
Content-Transfer-Encoding: quoted-printable
Message-Id: <22CC7FDB-162E-44CD-8EEA-0B5B8B560F8B@lists.zabbadoz.net>
References: <4F87AB6F.4050504@gmail.com>
To: Zmiter <zmiterby@gmail.com>
X-Mailer: Apple Mail (2.1084)
Cc: stable@freebsd.org
Subject: Re: Support for IPSec NAT-T in transoprt mode
X-BeenThere: freebsd-stable@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Production branch of FreeBSD source code <freebsd-stable.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-stable>, 
	<mailto:freebsd-stable-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-stable>
List-Post: <mailto:freebsd-stable@freebsd.org>
List-Help: <mailto:freebsd-stable-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-stable>,
	<mailto:freebsd-stable-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sat, 14 Apr 2012 16:59:21 -0000


On 13. Apr 2012, at 04:28 , Zmiter wrote:

> Hello.
> Does FreeBSD 8.[0-4] support IPSec NAT-T in transport mode? Or it's =
still in broken state?

It's not broken; it was never implemented.  No FreeBSD tree shipped does
support transport mode at this time.  There are patches but you also =
need
to fix ipsec-tools or your ike daemon.  If you do the latter I can =
commit
the former.

/bz

--=20
Bjoern A. Zeeb                                 You have to have visions!
   It does not matter how good you are. It matters what good you do!