Date: Thu, 23 Jul 2009 22:15:25 +0200 (CEST) From: Ingo Flaschberger <if@xip.at> To: freebsd-net@freebsd.org Cc: vanhu@FreeBSD.org Subject: natt (again) in 7.2 stable and a forticlient Message-ID: <alpine.LFD.1.10.0907232208260.25323@filebunker.xip.at>
next in thread | raw e-mail | index | archive | help
Dear Yvan, I have tried to get natt at freebsd 7.2 stable with your patch http://people.freebsd.org/~vanhu/NAT-T/patch-natt-7.2-2009-05-12.diff and ipsec-tools 0.7.2 and 0.8-alpha20090525+natt running, but have no success. negotiation works, but traffic from forticlient gives esp_input_cb: authentication hash mismatch for packet in SA x.x.x.x/009320d9 error. Also there is no traffic seen incoming at the forticlient, but leaves the freebsd-box. I have tried to figure out changes at freebsd 8.0 and the patchset http://people.freebsd.org/~bz/20090523-04-natt.diff, but that is at some places new code. Do you have any idea what breaks? Will it work at 8.0? and does it make sense to go with 8.0? (have seen some other ipsec patches from you that address stability) Kind regards, Ingo Flaschberger
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?alpine.LFD.1.10.0907232208260.25323>