diff options
| author | Konstantin Belousov <kib@FreeBSD.org> | 2023-05-27 06:00:24 +0000 |
|---|---|---|
| committer | Konstantin Belousov <kib@FreeBSD.org> | 2023-05-29 22:10:02 +0000 |
| commit | cf85818e05a9349dfba040fb32e752d3c691ed1f (patch) | |
| tree | 8784261368af6ea3b1438b23003e1a82ffd85f35 | |
| parent | 2fa1b8617fdf68d0043efb7ae7c524702afba27c (diff) | |
| download | src-cf85818e05a9349dfba040fb32e752d3c691ed1f.tar.gz src-cf85818e05a9349dfba040fb32e752d3c691ed1f.zip | |
setkey(8): document NAT-T and NAT-T MTU extensions syntax
Reviewed by: ae
Discussed with: bz
Sponsored by: NVidia networking
MFC after: 1 week
Differential revision: https://reviews.freebsd.org/D40300
| -rw-r--r-- | sbin/setkey/setkey.8 | 19 |
1 files changed, 17 insertions, 2 deletions
diff --git a/sbin/setkey/setkey.8 b/sbin/setkey/setkey.8 index 38c10546cccb..dfa970397f25 100644 --- a/sbin/setkey/setkey.8 +++ b/sbin/setkey/setkey.8 @@ -29,7 +29,7 @@ .\" .\" $FreeBSD$ .\" -.Dd April 3, 2023 +.Dd May 27, 2023 .Dt SETKEY 8 .Os .\" @@ -283,7 +283,7 @@ and they cannot be used. .Pp .It Ar extensions take some of the following: -.Bl -tag -width Fl -compact +.Bl -tag -width Fl natt_mtu -compact .\" .It Fl m Ar mode Specify a security protocol mode for use. @@ -328,6 +328,21 @@ Do not allow cyclic sequence number. .It Fl lh Ar time .It Fl ls Ar time Specify hard/soft life time duration of the SA. +.It Fl natt Ar oai \([ Ar sport \(] Ar oar \([ Ar dport \(] +Manually configure NAT-T for the SA, by specifying initiator +.Ar oai +and +requestor +.Ar oar +ip addresses and ports. +Note that the +.Sq \([ +and +.Sq \(] +symbols are part of the syntax for the ports specification, +not indication of the optional components. +.It Fl natt_mtu Ar fragsize +Configure NAT-T fragment size. .El .\" .Pp |