Hi. On Mon, 14 Nov 2011 18:34:04 +0100, Tomasz Torcz wrote > It seems you have your layering wrong. IPSec operates on IP > protocol, below UDP and TCP. Only IKE, the key exchange, protocol > works on UDP. Maybe you thought about different technology? For VPN, > OpenVPN provided in Fedora support TCP transport The Cisco VPN client (and vpnc) can encapsulate ESP in UDP, to help transmission through firewalls, NAT and the like, the operative term for that is NAT-T. The Cisco VPN client can also use TCP encapsulation, although I think that requires support on the terminating device as well (it will not work by default). I've never used it in practice. -- devel mailing list devel@xxxxxxxxxxxxxxxxxxxxxxx https://admin.fedoraproject.org/mailman/listinfo/devel
