From: Reyk Floeter (reykcvs.openbsd.org)
Date: Fri Jun 04 2010 - 04:51:45 CDT

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

CVSROOT: /cvs
Module name: src
Changes by: reykcvs.openbsd.org 2010/06/04 03:51:45

Modified files:
        sbin/iked : ikev2.c pfkey.c

Log message:
Fix NAT-T detection to enable UDP encapsulation. It was done before,
but not in the right order to run the IKEv2 NAT detection and check the
source port of the last IKE message which should be the NAT-T port 4500.

Tested with iked running on sparc64 and a NAT'ed windows box.

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]