From owner-freebsd-net@FreeBSD.ORG Thu Jul 16 16:34:53 2009 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 5A4E6106566B for ; Thu, 16 Jul 2009 16:34:53 +0000 (UTC) (envelope-from julian@elischer.org) Received: from outY.internet-mail-service.net (outy.internet-mail-service.net [216.240.47.248]) by mx1.freebsd.org (Postfix) with ESMTP id 417758FC08 for ; Thu, 16 Jul 2009 16:34:53 +0000 (UTC) (envelope-from julian@elischer.org) Received: from idiom.com (mx0.idiom.com [216.240.32.160]) by out.internet-mail-service.net (Postfix) with ESMTP id E8E33DC2F; Thu, 16 Jul 2009 09:34:52 -0700 (PDT) X-Client-Authorized: MaGic Cook1e X-Client-Authorized: MaGic Cook1e X-Client-Authorized: MaGic Cook1e Received: from julian-mac.elischer.org (home.elischer.org [216.240.48.38]) by idiom.com (Postfix) with ESMTP id 9D52E2D601C; Thu, 16 Jul 2009 09:34:52 -0700 (PDT) Message-ID: <4A5F56AC.1000603@elischer.org> Date: Thu, 16 Jul 2009 09:34:52 -0700 From: Julian Elischer User-Agent: Thunderbird 2.0.0.22 (Macintosh/20090605) MIME-Version: 1.0 To: Gergely CZUCZY References: <20090716143248.0000184e@unknown> <20090716123836.GA85624@zeninc.net> <20090716145759.000074c9@unknown> In-Reply-To: <20090716145759.000074c9@unknown> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: freebsd-net@freebsd.org, VANHULLEBUS Yvan Subject: Re: FreeBSD 7.2 racoon and NAT-T X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 16 Jul 2009 16:34:53 -0000 Gergely CZUCZY wrote: > On Thu, 16 Jul 2009 14:38:36 +0200 > VANHULLEBUS Yvan wrote: > >> On Thu, Jul 16, 2009 at 02:32:48PM +0200, Gergely CZUCZY wrote: >>> Hello, >> Hi. >> >> >>> I'd like to ask for the state of that NAT-T support in 7.2. I've >>> seen a note in ipsec-tools's OPTIONS for a required kernel patch >>> for 6.x in order to have NAT-T working. Is this also required for >>> 7.2? If a kernel patch is needed, is a recent patch available for >>> 7.2? Does racoon needs to be patched with anything not in the port? >> http://people.freebsd.org/~vanhu/NAT-T/patch-natt-7.2-2009-05-12.diff >> and ipsec-tools 0.7.x will work together (NOT tried with very recent >> versions of stable/7, please report any problem). >> >> >> A new FreeBSD patch will be needed to be able to run with upcoming >> 0.8.x (and with recent HEAD snapshots), and will be put in the same >> location. > ???? Does that mean that I was dreaming and the NAT-T stuff wasn't committed? I was certain I had seen it being committted to current? > Thank you very much. > > Would it be possible that this could be integrated? > Might be with racoon, that would also be very nice. So far this is the > only thing I've found in FreeBSD that needs a feature in the base > install needs a 3rdparty utility in order to work at all. > > Would be very nice to have everything in base available to have IPSec > working all around. > >> >> Yvan. > > >