I need to support passthrough of IPSec connections (RFC 3715 ) IPSEC packets to pass through a NAT router. Could you please help me in suggesting hints libraries conf files etc.. to start with. Thanks
Are you looking for NAT configuration or the IPsec configuration? If you are looking for IPsec configuration are you using setkey, racoon or racoon2? The usual way to get IPsec to work through NAT is to use tunnel mode and UDP encapsulate it. For NAT our PF implementation will just see it as UDP traffic and NAT it as normal. For documentation on configuring the pf rules see pf.conf http://www.qnx.com/developers/docs/660/index.jsp?topic=%2Fcom.qnx.doc.neutrino.utilities%2Ftopic%2Fp%2Fpf.conf.html& resultof=%22pf%2econf%22%20 For the IPsec configuration see setkey and racoon http://www.qnx.com/developers/docs/660/index.jsp?topic=%2Fcom.qnx.doc.core_networking%2Ftopic%2Fsecurity_IPsec_Tools. html&resultof=%22setkey%22%20%22setkei%22%20