[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
(racoon 851) Re: Racoon NAT-T Transport Mode
- To: racoon@kame.net
- Subject: (racoon 851) Re: Racoon NAT-T Transport Mode
- From: Michal Ludvig <michal@logix.cz>
- Date: Thu, 4 Nov 2004 14:09:56 +0100 (CET)
- Delivered-to: racoon-archive@kame.net
- Delivered-to: racoon-outgo@kame.net
- Delivered-to: racoon@orange.kame.net
- Delivered-to: racoon@kame.net
- In-reply-to: <1gmp64p.152skk31ruhj6xM%manu@netbsd.org>
- References: <1gmp64p.152skk31ruhj6xM%manu@netbsd.org>
- Reply-to: racoon@kame.net
- Sender: owner-racoon@kame.net
On Wed, 3 Nov 2004, Emmanuel Dreyfus wrote:
> Miles Nordin <carton@Ivy.NET> wrote:
>
> > manu is working on one for NetBSD. I don't know the status.
> > http://mail-index.netbsd.org/tech-kern/2004/09/30/0006.html
>
> A possible US patent on NAT-T prevented me from committing it into the
> NetBSD tree. Someone is currently investigating if this can be safely
> committed.
>
> In the meantime, anyone living in a (software patent) free country can
> use it. Here is the latest patch:
> http://ftp.espci.fr/shadow/manu/nat-t.patch
>
> I don't know if it works with transport mode, though. I see no reason
> why it wouldn't. I use it in tunnel mode.
>
> > It sounds like he is maybe not using the default racoon that comes
> > with KAME?
>
> I use ipsec-tools racoon.
IPsec-tools racoon doesn't support NAT-OA payload that is required for
transport mode byt the standard. It is quite some time since I wrote the
NAT-T support so I'm not sure how much work would it be to add it...
Michal Ludvig
--
* A mouse is a device used to point at the xterm you want to type in.
* Personal homepage - http://www.logix.cz/michal