[nycbug-talk] Connecting a MacOS X client to an isakmpd VPN ...

Brian A. Seklecki lavalamp at spiritual-machines.org
Fri May 4 11:47:59 EDT 2007

Right; and for some reason, the FreeBSD 6.x NAT-T bug hasn't been applied 
to the tree; it's just floating out there.

It works fine on NetBSD though.


 	-lava (Brian A. Seklecki - Pittsburgh, PA, USA)
-------------- next part --------------
>>>>> "bas" == Brian A Seklecki <lavalamp at spiritual-machines.org> writes:

   bas> racoon(8) and ipsec-tools support NAT-T; it's in the 0.7x
   bas> code.  --enable--natt i believe is the compile-time flag.  UDP
   bas> is definately supported; haven't tried TCP yet.

but kernel support is required, too.  and there are a disgustingly
stupid number of variations on something so simple as NAT-T so that
stacks often don't interoperate.  so I was wondering with what client
and with which BSD.

the ``works, but only for one road warrior behind a NAT'' problem
David mentioned used to be common, too.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 304 bytes
Desc: not available
URL: <http://lists.nycbug.org/pipermail/talk/attachments/20070504/3871a2a9/attachment.bin>
-------------- next part --------------
% NYC*BUG talk mailing list
%Be sure to check out our Jobs and NYCBUG-announce lists
%We meet the first Wednesday of the month

More information about the talk mailing list