As a workaround I recommend to use IPsec tunnel mode with NAT-T. Windows XP's LT2P client can be configured to use tunnel mode instead of the default transport mode.
Regards Andreas Jaime Vargas wrote: > Hello, everybody; > > As far as I know, there's a well-known issue with NAT-T that makes > impossible to connect simultaneously to a VPN using L2TP over IPSec > from two Windows clients which reside behind the same NAT box. Problem > is, I need to offer a solution, or at least a convincing argument, for > this exact case (other than configuring a site-to-site VPN, which is > not deemed suitable for only two users). > > My questions regarding this issue are: > > a) Is the cause of this issue established? > b) Is there any solution or workaround (involving Windows XP as the > clients and strongSwan + l2tpns + NETKEY at the server)? > c) If not, is a solution for this in the works, or being considered? > > Thanks in advance, > Jaime ====================================================================== Andreas Steffen andreas.stef...@strongswan.org strongSwan - the Linux VPN Solution! www.strongswan.org Institute for Internet Technologies and Applications University of Applied Sciences Rapperswil CH-8640 Rapperswil (Switzerland) ===========================================================[ITA-HSR]== _______________________________________________ Users mailing list Users@lists.strongswan.org https://lists.strongswan.org/mailman/listinfo/users