Bug#307424: freeswan: New upstream version of NAT-Traversal Patch -- Version 0.6c

Mon, 02 May 2005 15:54:28 -0700 

Package: freeswan
Version: 2.04-11.3
Severity: important
Tags: patch

My server is behind NAT, I had to enable NAT-Traversal, then I got
"unsupported ID type ID_FQDN" errors:

With Windows XP Home/Professional (with IPsec update Q818043 or ServicePack
2) you need at least version 0.6c of the NAT-T patch to support Windows
(check the Openswan startup messages in /var/log/messages for the NAT-T
version on your server).

Should your Linux server not have this patch, you will see "unsupported
ID type ID_FQDN" errors in the logfiles

  o Version 0.6c
    - Added MS 818043 NAT-T hack back in
    - tests
    -   http://www.jacco2.dds.nl/networking/freeswan-l2tp.html
    -    XP PRO/W2k IPSEC/L2TP : OK
    -    XP HOME : OK (1 reported case of non-retail HOME failing)

other links:
 http://www.openswan.org/docs/local/README.NAT-Traversal
 http://www.advancevpn.com/public/super-freeswan-818043NATv3.patch

-- System Information:
Debian Release: 3.1
  APT prefers testing
  APT policy: (650, 'testing')
Architecture: i386 (i586)
Kernel: Linux 2.4.26-1-586tsc
Locale: LANG=en_ZA, LC_CTYPE=en_ZA (charmap=ISO-8859-1)

Versions of packages freeswan depends on:
ii  bind9-host [host]           1:9.2.4-1    Version of 'host' bundled with BIN
ii  bsdmainutils                6.0.17       collection of more utilities from 
ii  debconf                     1.4.30.13    Debian configuration management sy
ii  debianutils                 2.8.4        Miscellaneous utilities specific t
ii  devfsd                      1.3.25-19    Daemon for the device file system
ii  gawk                        1:3.1.4-2    GNU awk, a pattern scanning and pr
ii  iproute                     20041019-3   Professional tools to control the 
ii  libc6                       2.3.2.ds1-21 GNU C Library: Shared libraries an
ii  libcurl3                    7.13.2-2     Multi-protocol file transfer libra
ii  libgmp3                     4.1.4-6      Multiprecision arithmetic library
ii  libldap2                    2.1.30-3     OpenLDAP libraries
ii  libopensc1                  0.9.4-9      SmartCard library with support for
ii  libssl0.9.7                 0.9.7e-3     SSL shared libraries
ii  makedev                     2.3.1-77     creates device files in /dev
ii  openssl                     0.9.7e-3     Secure Socket Layer (SSL) binary a

-- debconf information:
  freeswan/makedev: true
* freeswan/restart: true
  freeswan/x509_common_name:
* freeswan/create_rsa_key: false
* freeswan/start_level: earliest
  freeswan/existing_x509_certificate_filename:
  freeswan/x509_email_address:
* freeswan/enable-oe: false
  freeswan/x509_state_name:
  freeswan/x509_organization_name:
  freeswan/x509_organizational_unit:
  freeswan/x509_self_signed: true
  freeswan/rsa_key_length: 2048
  freeswan/rsa_key_type: x509
  freeswan/existing_x509_certificate: false
  freeswan/x509_locality_name:
  freeswan/x509_country_code: AT
  freeswan/existing_x509_key_filename:


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]

Reply via email to