Date: Tue, 2 Jan 2001 09:51:20 -0500 From: "Cambria, Mike" <mcambria@avaya.com> To: 'Blaz Zupan' <blaz@amis.net>, "Michael C. Cambria" <cambria@mcambria.ne.mediaone.net> Cc: freebsd-net@FreeBSD.ORG Subject: RE: natd not translating ESP packets Message-ID: <443F9E4C6D67D4118C9800A0C9DD99D710823A@rerun.lucentctc.com>
next in thread | raw e-mail | index | archive | help
Updating my ipfw/natd system to 4.2-Release worked. MikeC -----Original Message----- From: Blaz Zupan [mailto:blaz@amis.net] Sent: Friday, December 29, 2000 11:18 AM To: Michael C. Cambria Cc: freebsd-net@FreeBSD.ORG Subject: Re: natd not translating ESP packets > > IPSec and NAT don't play together > > I've set other pepole up (granted with comercial products) to do this very > thing just fine. > > I'm not using AH, just ESP, so nat'ing the IP address of the outer header > will not break anything. Ok, let me rephrase it. IPSec and NAT don't play together on FreeBSD. natd does not know how to masqeurade ESP packets. Blaz Zupan, Medinet d.o.o, Linhartova 21, 2000 Maribor, Slovenia E-mail: blaz@amis.net, Tel: +386-2-320-6320, Fax: +386-2-320-6325 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?443F9E4C6D67D4118C9800A0C9DD99D710823A>