From owner-freebsd-stable@FreeBSD.ORG Wed Jan 20 13:22:45 2010 Return-Path: Delivered-To: freebsd-stable@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 51665106566B for ; Wed, 20 Jan 2010 13:22:45 +0000 (UTC) (envelope-from crest@cyb0rg.org) Received: from cyb0rg.org (tomakin.niobe.h-ix.net [IPv6:2001:6f8:1c12:23::2]) by mx1.freebsd.org (Postfix) with ESMTP id 18A3F8FC18 for ; Wed, 20 Jan 2010 13:22:45 +0000 (UTC) Received: from macbook-4.local (unknown [134.102.115.16]) by cyb0rg.org (Postfix) with ESMTPA id 4C1B41FC40F; Wed, 20 Jan 2010 14:22:58 +0100 (CET) Message-ID: <4B5703A3.6010507@cyb0rg.org> Date: Wed, 20 Jan 2010 14:22:43 +0100 From: Crest User-Agent: Thunderbird 2.0.0.23 (Macintosh/20090812) MIME-Version: 1.0 To: "Rabidinov M.A." References: <659350866.20100120151602@mail.ru> In-Reply-To: <659350866.20100120151602@mail.ru> X-Enigmail-Version: 0.96.0 Content-Type: text/plain; charset=windows-1251 Content-Transfer-Encoding: 7bit Cc: freebsd-stable@freebsd.org Subject: Re: IPSec NAT-T in transport mode X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 20 Jan 2010 13:22:45 -0000 Rabidinov M.A. schrieb: > Hello, Freebsd-stable. > > Does FreeBSD 8.0 support IPSec NAT-T in transport mode? > I want to create a L2TP/IPSec server. My VPN clients are NATed. > L2TP server (MPD5.x) makes tunnel, so I need working IPSec NAT-T in transport mode. > Thanks a lot. > Yes the NAT-T Patch has been integrated into FreeBSD 8.0. Just rebuild your kernel with this options: device crypto # IPsec depends on this options IPSEC options IPSEC_DEBUG options IPSEC_NAT_T