From owner-freebsd-net@FreeBSD.ORG  Mon Sep 18 15:05:22 2006
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
X-Original-To: freebsd-net@freebsd.org
Delivered-To: freebsd-net@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 72E0B16A557
	for <freebsd-net@freebsd.org>; Mon, 18 Sep 2006 15:05:22 +0000 (UTC)
	(envelope-from bzeeb-lists@lists.zabbadoz.net)
Received: from transport.cksoft.de (transport.cksoft.de [62.111.66.27])
	by mx1.FreeBSD.org (Postfix) with ESMTP id AA05F43D67
	for <freebsd-net@freebsd.org>; Mon, 18 Sep 2006 15:05:11 +0000 (GMT)
	(envelope-from bzeeb-lists@lists.zabbadoz.net)
Received: from transport.cksoft.de (localhost [127.0.0.1])
	by transport.cksoft.de (Postfix) with ESMTP
	id 719EB1FFDBC; Mon, 18 Sep 2006 17:05:10 +0200 (CEST)
Received: by transport.cksoft.de (Postfix, from userid 66)
	id A6CF91FFD70; Mon, 18 Sep 2006 17:05:05 +0200 (CEST)
Received: from maildrop.int.zabbadoz.net (maildrop.int.zabbadoz.net
	[10.111.66.10])
	(using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits))
	(No client certificate requested)
	by mail.int.zabbadoz.net (Postfix) with ESMTP id 4715C444871;
	Mon, 18 Sep 2006 15:04:04 +0000 (UTC)
Date: Mon, 18 Sep 2006 15:04:04 +0000 (UTC)
From: "Bjoern A. Zeeb" <bzeeb-lists@lists.zabbadoz.net>
X-X-Sender: bz@maildrop.int.zabbadoz.net
To: VANHULLEBUS Yvan <vanhu_bsd@zeninc.net>
In-Reply-To: <20060918145200.GA26025@zen.inc>
Message-ID: <20060918145727.F2478@maildrop.int.zabbadoz.net>
References: <20060914093034.A83805@gta.com>
	<d5992baf0609141843t5b81cf77w4d35a3a36beced1c@mail.gmail.com>
	<20060915091430.A45488@gta.com>
	<d5992baf0609150907p64ce6394y4b1fbb3309e76d53@mail.gmail.com>
	<20060917125531.GA1611@jayce.zen.inc>
	<d5992baf0609170858y107897c9k3039dbcb3d61d39a@mail.gmail.com>
	<20060918145200.GA26025@zen.inc>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed
X-Virus-Scanned: by AMaViS cksoft-s20020300-20031204bz on transport.cksoft.de
Cc: freebsd-net@freebsd.org
Subject: Re:  FAST_IPSEC NAT-T support
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 18 Sep 2006 15:05:22 -0000

On Mon, 18 Sep 2006, VANHULLEBUS Yvan wrote:

> By default in FreeBSd's port, NAT-T support is enabled if support is
> detected on the system (checks for some structs in
> include/net/pfkeyv2.h).
>
> Can you compile again ipsec-tools port, but not clean it, and check in
> config.h if you have NAT-T support enabled.

What I had found in the past is that the port (more exactly
ipsec-tools) does not complain if configure is run with
--enable-natt but the correct header files are no there. It silently
continues and just disables natt support.
That beahvior would be fine for "autodetect" but not for a command
line option that says "I want natt support and you give me".

-- 
Bjoern A. Zeeb				bzeeb at Zabbadoz dot NeT