[vpn-devel] Nailed policy issue.
Zephaniah E. Loss-Cutler-Hull
zhull at jetpay.com
Thu Apr 8 17:15:50 CDT 2010
Between 2.1.5 and SVN HEAD, some changes went in which broke ike for our
usage case[1].
A patch is attached, this seems to match what 2.1.5 is doing in this
case and it fixes the problem in question.
1: mutual-rsa-xauth with natt to a Cisco PIX from a Ubuntu 9.10 box
running 2.6.33.2. (Some other patches are needed to make this work as
well, those are coming.)
Regards,
Zephaniah E. Loss-Cutler-Hull
Sr. Engineer.
JetPay, LLC.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: ike_nailed.diff
Type: text/x-patch
Size: 643 bytes
Desc: not available
URL: <https://lists.shrew.net/pipermail/vpn-devel/attachments/20100408/5dfe921e/attachment-0004.bin>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 899 bytes
Desc: OpenPGP digital signature
URL: <https://lists.shrew.net/pipermail/vpn-devel/attachments/20100408/5dfe921e/attachment-0005.bin>
More information about the vpn-devel
mailing list