Differences between version 4 and revision by previous author of NatTraversal.
Other diffs: Previous Major Revision, Previous Revision, or view the Annotated Edit History
Newer page: | version 4 | Last edited on Monday, October 31, 2005 9:19:04 am | by CraigBox | Revert |
Older page: | version 3 | Last edited on Sunday, October 30, 2005 5:03:56 am | by AndreasSteffen | Revert |
@@ -1,7 +1,9 @@
An Internet draft prepared initially by [Cisco], to allow [IPSec] to work over [NAT].
In [AH] mode, IPSec headers are signed; any changes to them (like a NAT rewrite for example) will invalidate the header. NAT Traversal lets you tunnel all the [ESP] and [AH] data in packets over [UDP] port 4500, which can have ''their'' headers rewritten all you like.
-There is a [NAT Traversal patch for FreeS/WAN|http://open-source.arkoon.net/] which has been fully integrated into [
OpenSwan]
and [
StrongSwan]
.
+There is a [NAT Traversal patch for FreeS/WAN|http://open-source.arkoon.net/] which has been fully integrated into OpenSwan and StrongSwan.
-The
[IETF] drafts
: [IPSEC NAT Traversal: Internet Key Exchange|http://www.ietf.org/internet-drafts/draft-ietf-ipsec-nat-t-ike-07.txt] and
[UDP Encapsulation|http://www.ietf.org/internet-drafts/draft-ietf-ipsec-udp-encaps-06.txt].
+See also:
+*
[IETF] draft
: [IPSEC NAT Traversal: Internet Key Exchange|http://www.ietf.org/internet-drafts/draft-ietf-ipsec-nat-t-ike-07.txt]
+* [IETF] draft:
[UDP Encapsulation|http://www.ietf.org/internet-drafts/draft-ietf-ipsec-udp-encaps-06.txt].