Hello all! I have a situation where vpnc is failing due to an incorrect setting in the NetworkManager vpnc plugin. The situation is a condition where a firewall or other non-NAT device is interfering with protocol 50 (esp) and we need NAT-T even though we are not behind a NAT. As it so happens, vpnc does support this. It's "NAT Traversal mode force-natt". In those environments, cli invocation of vpnc works like a charm. But there appears to be no way for the NetworkManager vpnc plugin to configure and use this. The force-natt option is most likely to work in the widest variety of environments at the cost of a slight overhead (UDP encapsulation). OpenSWAN, StrongSWAN, Racoon, and vpnc all support this. Just need the plugin adapted to support it as well. Any chance of getting that added to that plugin? Regards, Mike -- Michael H. Warfield (AI4NB) | (770) 985-6132 | mhw WittsEnd com /\/\|=mhw=|\/\/ | (678) 463-0932 | http://www.wittsend.com/mhw/ NIC whois: MHW9 | An optimist believes we live in the best of all PGP Key: 0x674627FF | possible worlds. A pessimist is sure of it!
Attachment:
signature.asc
Description: This is a digitally signed message part