Date: Tue, 01 Jul 2008 07:56:43 -0700 From: Sam Leffler <sam@freebsd.org> To: Larry Baird <lab@gta.com> Cc: freebsd-net@freebsd.org, vanhu_bsd@zeninc.net Subject: Re: FreeBSD NAT-T patch integration Message-ID: <486A45AB.2080609@freebsd.org> In-Reply-To: <20080630040103.94730.qmail@mailgate.gta.com> References: <20080630040103.94730.qmail@mailgate.gta.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Larry Baird wrote:
>> And how do I know that it works ?
>> Well, when it doesn't work, I do know it, quite quickly most of the
>> time !
>>
> I have to chime in here. I did most of the initial porting of the
> NAT-T patches from Kame IPSec to FAST_IPSEC. I did look at every
> line of code during this process. I found no security problems during
> the port. Like Yvan, my company uses the NAT-T patches commercially.
> Like he says, if it had problems, we would hear about it. If the patches
> don't get commited, I highly suspect Yvan or myself would try to keep the
> patches up todate. So far I have done FAST_IPSEC pacthes for FreeBSD 4,5,6.
> Yvan did 7 and 8 by himself. Keeping up gets to be a pain after a while.
> I do plan to look at the FreeBSD 7 patches soon, but it sure would be nice
> to see it commited.
>
>
This whole issue seems ridiculous. I've been trying to get the NAT-T
patches committed for a while but since I'm not setup to do any IPSEC
testing have deferred to others. If we need to break a logjam I'll
pitch in.
Sam
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?486A45AB.2080609>