[strongSwan] Missing NAT keep alive packets when forceencaps is set
Tobias Brunner
tobias at strongswan.org
Tue Apr 23 12:02:46 CEST 2019
Hi Lars,
> Got a roadwarrior/client connection where NAT-T isn't auto detected.
Why is that?
> I tried to solve this by forcing UDP encapsulation using forceencaps=yes and expected that NAT keep alive packets also where sent in order to keep the connection alive.
> But this doesn't seem to be the case.
No it's not. Only if a host is actually behind a NAT (as detected by
NAT-D) are NAT keepalives sent.
> Can I enable this behaviour somehow?
No, currently not.
Regards,
Tobias
More information about the Users
mailing list