From e4298413c85fc555b223cfcc81135ab2338c514d Mon Sep 17 00:00:00 2001 From: Scott Ullrich Date: Sat, 4 Aug 2007 20:33:43 +0000 Subject: Sync NATT support from m0n0wall --- usr/local/www/vpn_ipsec_mobile.php | 10 ++++++++++ 1 file changed, 10 insertions(+) (limited to 'usr') diff --git a/usr/local/www/vpn_ipsec_mobile.php b/usr/local/www/vpn_ipsec_mobile.php index 38af3d1..cd7892f 100755 --- a/usr/local/www/vpn_ipsec_mobile.php +++ b/usr/local/www/vpn_ipsec_mobile.php @@ -49,6 +49,7 @@ if (count($a_ipsec) == 0) { $pconfig['p2pfsgroup'] = "0"; } else { $pconfig['enable'] = isset($a_ipsec['enable']); + $pconfig['natt'] = isset($a_ipsec['natt']); $pconfig['p1mode'] = $a_ipsec['p1']['mode']; if (isset($a_ipsec['p1']['myident']['myaddress'])) @@ -120,6 +121,7 @@ if ($_POST) { $ipsecent = array(); $ipsecent['enable'] = $_POST['enable'] ? true : false; $ipsecent['p1']['mode'] = $_POST['p1mode']; + $ipsecent['natt'] = $_POST['natt'] ? true : false; $ipsecent['p1']['myident'] = array(); switch ($_POST['p1myidentt']) { @@ -211,6 +213,14 @@ function methodsel_change() { > Allow mobile clients + +   + + > + Enable NAT Traversal (NAT-T)
+ Set this option to enable the use of NAT-T (i.e. the encapsulation of ESP in UDP packets) if needed, + which can help with clients that are behind restrictive firewalls. + Phase 1 proposal (Authentication) -- cgit v1.1