Re: NAT-T (NAT Traversal) support for Linux

From: Tom Van Overbeke (tom.van.overbeke_at_pandora.be)
Date: 05/05/03

  • Next message: Chuck Croll: "Re: open relay" 
    Date: Mon, 5 May 2003 09:57:24 +0200

    "Stephen J. Bevan" <stephen@dino.dnsalias.com> wrote in message
    news:m3vfwq1zk2.fsf@dino.dnsalias.com...
    > "Tom Van Overbeke" <tom.van.overbeke@pandora.be> writes:
    > > I need to establish a vpn connection between a windows 2000 client and a
    > > windows 2000 server (microsoft ipsec vpn) with a NAT'ing linux firewall
    in
    > > between.
    > [snip]
    > > Our network guys tell me that i need NAT-T (NAT Traversal) to make it
    work,
    > > that is: the encrypted packet needs to be encapsulated in a UDP packet.
    > >
    > > This is apparently supported by windows xp.
    > >
    > > Unfortunately, i find no info at all about NAT-T support for linux
    iptables.
    > > Does anyone know if it's possible, or, if not, if anyone is working on
    it. I
    > > imagine i cannot be the only one that needs to hook his laptop directly
    to
    > > the internet because the vpn solution provided by my company does not
    > > support my current linux firewall ?
    >
    > If your Windows 2000 client and Windows 2000 server both support NAT-T
    > then that's all you need. A goal of the NAT-T design is that it does
    > *not* require any special support from any firewall/nat/router that
    > the packets may flow through.

    Hello again Stephen,

    (as you understand, i finally got our network guys to open up a bit on the
    vpn setup ;-)

    Is NAT-T something that must be activated, or does it require that some
    additionnal software be installed, or is it a configuration option of the
    vpn setup ?

    Tom.

  • Next message: Chuck Croll: "Re: open relay"

    Relevant Pages

    • [opensuse] pptp vpn and windows
      ... require-mppe-128 optin and a loaded ppp_mppe kernel module. ... If I set the "Dataencryption required" in the Windows XP ... VPN Setup Dialog, I got an error "the locale computer does ...
      (SuSE)
    • Security Issues with VPN
      ... Subject: Security Issues with VPN ... I'm currently working on a VPN setup using Windows 2000 and have been trying ... I've been able to find documentation about the problems with PPTP under NT4 ...
      (Focus-Microsoft)
    • The setup VPN icon is greyed.
      ... I can not do any VPN setup because inside the setup ... wizard, the icon is greyed. ... All my windows is uptodated. ...
      (microsoft.public.windowsxp.setup_deployment)