From a161c9ecf91d3bff517b7f68b1adf78c30b355da Mon Sep 17 00:00:00 2001
From: Martin Willi <martin@revosec.ch>
Date: Mon, 15 Apr 2013 15:36:53 +0200
Subject: [PATCH] kernel-utun: specify NATT port when installing an SA with UDP
 encapsulation

---
 src/libhydra/plugins/kernel_utun/kernel_utun_ipsec.c | 1 +
 1 file changed, 1 insertion(+)

diff --git a/src/libhydra/plugins/kernel_utun/kernel_utun_ipsec.c b/src/libhydra/plugins/kernel_utun/kernel_utun_ipsec.c
index bf507789bc..c82c3847b7 100644
--- a/src/libhydra/plugins/kernel_utun/kernel_utun_ipsec.c
+++ b/src/libhydra/plugins/kernel_utun/kernel_utun_ipsec.c
@@ -290,6 +290,7 @@ static status_t add_sa_tun(private_kernel_utun_ipsec_t *this, tun_device_t *tun,
 
 	if (encap)
 	{
+		keys.args.u.ipsec_v1.natt_port = dst->get_port(dst);
 		keys.args.u.ipsec_v1.natd = IF_UTUN_CRYPTO_IPSEC_NATD_MINE;
 		keys.args.u.ipsec_v1.keepalive = IF_UTUN_CRYPTO_IPSEC_KEEPALIVE_NATT;
 	}
-- 
2.47.2