[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[suse-security] IPSec NAT traversal and kernel >= 2.5.45

To: "suse-security" <suse-security@xxxxxxxx>
Subject: [suse-security] IPSec NAT traversal and kernel >= 2.5.45
From: "GentooRulez" <paranoiac_user@xxxxxxxxxx>
Date: Thu, 3 Apr 2003 14:16:20 +0200
Delivered-to: mailing list suse-security@xxxxxxxx
Delivery-date: Thu, 03 Apr 2003 14:17:37 +0200
Envelope-to: suse@xxxxxxxxxxxxxxxxxxxxxxxxxxxxx
List-help: <mailto:suse-security-help@suse.com>
List-post: <mailto:suse-security@suse.com>
List-subscribe: <mailto:suse-security-subscribe@suse.com>
List-unsubscribe: <mailto:suse-security-unsubscribe-suse=archive.cert.uni-stuttgart.de@suse.com>
Mailing-list: contact suse-security-help@xxxxxxxx; run by ezmlm

Hi list,

I does not found anything reliable while googling and so I'll ask you.

Assuming you've IPSec-VPN gateways that are behind NATing routers
(which are not yours) you'll need a NAT Traversal patch for free/SWan IPSec
to tunnel the VPN traffic, cause the NAT modifies the packets and unpatched
free/SWan won't work than properly.

---------------  -----------------
| VPN Gateway |--| NATing Router |--- Internet ---|
---------------  -----------------                I
                                                  N
                                                  E
---------------  -----------------                T
| VPN Gateway |--| NATing Router |--- Internet ---|
---------------  -----------------

ASC-II art - is'nt it :O?

Does the new implementation of IPSec in kernel >=2.5.45
include such mechanism or do i have to patch thoose kernels too?

Thx in advance

Michael


-- 
Check the headers for your unsubscription address
For additional commands, e-mail: suse-security-help@xxxxxxxx
Security-related bug reports go to security@xxxxxxx, not here

Follow-Ups:
- Re: [suse-security] IPSec NAT traversal and kernel >= 2.5.45
  - From: Brian Topping

Prev by Date: Re: [suse-security] SuSE distributions and CERT Advisory CA-2003-10 Integer overflow in Sun RPC XDR library routines
Next by Date: Re: [suse-security] Linux-Server is frozen after security update of kernel
Previous by thread: Re: AW: [suse-security] VPN with SuSE Firewall on CD 2
Next by thread: Re: [suse-security] IPSec NAT traversal and kernel >= 2.5.45
Index(es):
- Date
- Thread