https://bugzilla.novell.com/show_bug.cgi?id=731547 https://bugzilla.novell.com/show_bug.cgi?id=731547#c0 Summary: It's impossible to establish ipsec connection in transport mode through router. Classification: openSUSE Product: openSUSE 11.3 Version: Final Platform: Other OS/Version: openSUSE 11.3 Status: NEW Severity: Enhancement Priority: P5 - None Component: Network AssignedTo: bnc-team-screening@forge.provo.novell.com ReportedBy: raiderx@yandex.ru QAContact: qa@suse.de Found By: --- Blocker: --- User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/535.2 (KHTML, like Gecko) Chrome/15.0.874.106 Safari/535.2 When I connect tp vpn gateway I see in log: 003 "l2tp-psk-client" #2: NAT-Traversal: Transport Mode not allowed due to security concerns -- using Tunnel mode 003 "l2tp-psk-client" #2: NAT-Traversal: Transport Mode not allowed due to security concerns -- using Tunnel mode This problem is described in Strongswan FAQ: http://wiki.strongswan.org/projects/strongswan/wiki/FAQ Strongswan package was build without option --enable-nat-transport. I rebuilt Strongswan with this option enabled and established connection through my router successfully. Is it possible to add this option in spec file at rpm source package and build Strongswan with new spec file? This package was build without that option enabled in OpenSUSE 12.1 also. Reproducible: Always Steps to Reproduce: 1. 2. 3. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.