Bug #64: MOBIKE with changed NAT mappings - strongSwan

Bug #64

MOBIKE with changed NAT mappings

Added by Martin Willi almost 10 years ago. Updated almost 10 years ago.

Status:

Closed

Priority:

High

Assignee:

Martin Willi

Category:

charon

Target version:

4.2.8

Start date:

Due date:

Estimated time:

Affected version:

5.6.3

Resolution:

Description

If MOBIKE is in use, NAT mappings are not implicitly updated. They must be updated explicitly using an additional NAT detection test, but charon does not handle that correctly.

Also, we could use received ESP packets to update SAs. This propably requires an extension to XFRM.

History

#1 Updated by Martin Willi almost 10 years ago

Status changed from New to Closed
Affected version set to fixed

MOBIKE enabled DPD with NAT mapping detection: r4368.

Kernel patch to notify changes in NAT-Mappings to userland:
http://lkml.org/lkml/2008/10/7/173

Userland support for kernel-detected mapping changes r4371.

Also available in: Atom PDF

Project

General

Profile

strongSwan

Issues

New issues

Bug #64

MOBIKE with changed NAT mappings

History

#1 Updated by Martin Willi almost 10 years ago