diff options
| author | Konstantin Belousov <kib@FreeBSD.org> | 2023-05-27 06:00:24 +0000 |
|---|---|---|
| committer | Konstantin Belousov <kib@FreeBSD.org> | 2023-06-05 08:35:00 +0000 |
| commit | dcaa24cf30571be8b80be3f5202e4ec77aa595f2 (patch) | |
| tree | 3907d886d5c8d1d0ca73b719d01fecf5a50f4a03 | |
| parent | 447af6361cec48b2d6e5955e7b2284620cb50ece (diff) | |
| download | src-dcaa24cf30571be8b80be3f5202e4ec77aa595f2.tar.gz src-dcaa24cf30571be8b80be3f5202e4ec77aa595f2.zip | |
setkey(8): document NAT-T and NAT-T MTU extensions syntax
(cherry picked from commit cf85818e05a9349dfba040fb32e752d3c691ed1f)
| -rw-r--r-- | sbin/setkey/setkey.8 | 19 |
1 files changed, 17 insertions, 2 deletions
diff --git a/sbin/setkey/setkey.8 b/sbin/setkey/setkey.8 index 20754c1b368f..73c89fdf9ec2 100644 --- a/sbin/setkey/setkey.8 +++ b/sbin/setkey/setkey.8 @@ -29,7 +29,7 @@ .\" .\" $FreeBSD$ .\" -.Dd April 3, 2023 +.Dd May 27, 2023 .Dt SETKEY 8 .Os .\" @@ -283,7 +283,7 @@ and they cannot be used. .Pp .It Ar extensions take some of the following: -.Bl -tag -width Fl -compact +.Bl -tag -width Fl natt_mtu -compact .\" .It Fl m Ar mode Specify a security protocol mode for use. @@ -328,6 +328,21 @@ Do not allow cyclic sequence number. .It Fl lh Ar time .It Fl ls Ar time Specify hard/soft life time duration of the SA. +.It Fl natt Ar oai \([ Ar sport \(] Ar oar \([ Ar dport \(] +Manually configure NAT-T for the SA, by specifying initiator +.Ar oai +and +requestor +.Ar oar +ip addresses and ports. +Note that the +.Sq \([ +and +.Sq \(] +symbols are part of the syntax for the ports specification, +not indication of the optional components. +.It Fl natt_mtu Ar fragsize +Configure NAT-T fragment size. .El .\" .Pp |