Re: [Ipsec-tools-devel] racoon ERROR: such policy does not already exist
Brought to you by:
mit_warlord,
netbsd
From: Emmanuel D. <ma...@ne...> - 2005-07-08 17:36:05
|
On Fri, Jul 08, 2005 at 10:09:25AM -0700, uri...@op... wrote: > 3. Other supporting evidence: I've had to fix a big in isakmp_quick.c where it blew upon encountering "nat-oa" payload. And I couldn't find any handling of "nat-oa" payload elsewhere - at best it was ignored, at worst Racoon would abort processing with "unexpecting payload 131" message. (snip) > Any recommendation as to where the fix should go? Before I re-invent the wheel and dig it up myself? racoon does not support NAT-T in transport mode. NetBSD and FreeBSD lack kernel support for it. I don't know about Linux, but it's probably the same. -- Emmanuel Dreyfus ma...@ne... |