From 16c1346b9a6c737fd054d4d0644bf5104fcb32aa Mon Sep 17 00:00:00 2001 From: vanhu Date: Fri, 12 Jun 2009 15:44:35 +0000 Subject: Added support for NAT-Traversal (RFC 3948) in IPsec stack. Thanks to (no special order) Emmanuel Dreyfus (manu@netbsd.org), Larry Baird (lab@gta.com), gnn, bz, and other FreeBSD devs, Julien Vanherzeele (julien.vanherzeele@netasq.com, for years of bug reporting), the PFSense team, and all people who used / tried the NAT-T patch for years and reported bugs, patches, etc... X-MFC: never Reviewed by: bz Approved by: gnn(mentor) Obtained from: NETASQ --- sys/netipsec/key.h | 5 +++++ 1 file changed, 5 insertions(+) (limited to 'sys/netipsec/key.h') diff --git a/sys/netipsec/key.h b/sys/netipsec/key.h index fc38279..e85acd1 100644 --- a/sys/netipsec/key.h +++ b/sys/netipsec/key.h @@ -106,6 +106,11 @@ extern void key_destroy(void); extern void key_sa_recordxfer __P((struct secasvar *, struct mbuf *)); extern void key_sa_routechange __P((struct sockaddr *)); extern void key_sa_stir_iv __P((struct secasvar *)); +#ifdef IPSEC_NAT_T +u_int16_t key_portfromsaddr(struct sockaddr *); +#define KEY_PORTFROMSADDR(saddr) \ + key_portfromsaddr((struct sockaddr *)(saddr)) +#endif #ifdef MALLOC_DECLARE MALLOC_DECLARE(M_IPSEC_SA); -- cgit v1.1