NAT-T Implementation

[Crist J. Clark]

Now that NAT-T has moved on from Internet Draft to RFC, does
anyone out there know if anyone is working on an implementation
for FAST_IPSEC or KAME? I believe the isakmpd(8) daemon in
ports supports it, but AFAIK, the kernel does not. Short of
some really ugly divert(4) or netgraph(4) kludges (that is
not a totally idle threat either), are we going to see in-kernel
support for that anytime soon? Or is this code out there and
I just haven't seen it?
-- 
Crist J. Clark                     |     cjclark at alum.mit.edu