[Swan-dev] hack for MS 818043 NAT-T Update

Paul Wouters paul at nohats.ca
Mon May 26 08:28:23 EEST 2014

On Sun, 25 May 2014, D. Hugh Redelmeier wrote:

> From: D. Hugh Redelmeier <hugh at mimosa.com>
> To: Libreswan Development List <swan-dev at lists.libreswan.org>
> Subject: [Swan-dev] hack for MS 818043 NAT-T Update
> Is there a good explanation for what this is about?  Certainly not in the
> code (which is where I'd want at least some of it, or a pointer).

I believe on rekey, it sent a bogus subnet or wrong type of ID.

> <http://support.microsoft.com/kb/818043> was released in 2003 and applies
> to products that microsoft has obsoleted (WinXP and Win 2000).
> Was the problem introduced by this MS patch or fixed by it?

It was introduced by the Microsoft update.

> Is this work-around still a good idea?

Yes, there are millions of XP/2000 machines out there.


More information about the Swan-dev mailing list