Without MOBIKE, update remote host only if it is behind NAT

author Martin Willi <martin@revosec.ch>

Fri, 22 Feb 2013 13:55:03 +0000 (14:55 +0100)

committer Martin Willi <martin@revosec.ch>

Fri, 1 Mar 2013 10:26:47 +0000 (11:26 +0100)
author Martin Willi <martin@revosec.ch>
Fri, 22 Feb 2013 13:55:03 +0000 (14:55 +0100)
committer Martin Willi <martin@revosec.ch>
Fri, 1 Mar 2013 10:26:47 +0000 (11:26 +0100)
diff --git a/src/libcharon/sa/ike_sa.c b/src/libcharon/sa/ike_sa.c

index ea15ff2..0157599 100644 (file)
--- a/src/libcharon/sa/ike_sa.c
+++ b/src/libcharon/sa/ike_sa.c
@@ -900,7 +900,7 @@ METHOD(ike_sa_t, update_hosts, void,
         else
         {
                 /* update our address in any case */
-               if (!me->equals(me, this->my_host))
+               if (force && !me->equals(me, this->my_host))
                 {
                         set_my_host(this, me->clone(me));
                         update = TRUE;
@@ -909,7 +909,8 @@ METHOD(ike_sa_t, update_hosts, void,
                 if (!other->equals(other, this->other_host))
                 {
                         /* update others address if we are NOT NATed */
-                       if (force || !has_condition(this, COND_NAT_HERE))
+                       if ((has_condition(this, COND_NAT_THERE) &&
+                                !has_condition(this, COND_NAT_HERE)) || force )
                         {
                                 set_other_host(this, other->clone(other));
                                 update = TRUE;
author	Martin Willi <martin@revosec.ch>
	Fri, 22 Feb 2013 13:55:03 +0000 (14:55 +0100)
committer	Martin Willi <martin@revosec.ch>
	Fri, 1 Mar 2013 10:26:47 +0000 (11:26 +0100)