[Openswan Users] sent MR3, ISAKMP SA established --> Payload malformed

Stefan Leippert LeippertS at gmx.de
Fri Dec 17 11:40:19 CET 2004


Hello !
As shown in the log below, the ISAKMP SA is established on my connection. I
have tried now overridemtu=1200, but the result was the same. I am working
with PSK, but why is there the message "I did not send a certificate because
I do not have one." ? In the config there is "authby=secret" on both sides. 

Do I need the aggressive mode here ? Using Openswan 2.3DR2 on the client and
2.3DR4 on the server. 

Thank you very much for help !
Stefan




Dec 17 10:21:23 localhost pluto[3828]: "vm"[1] 134.103.196.10:61036 #1:
NAT-Traversal: Result using draft-ietf-ipsec-nat-t-ike-02/03: both are NATed
Dec 17 10:21:23 localhost pluto[3828]: "vm"[1] 134.103.196.10:61036 #1:
transition from state STATE_MAIN_R1 to state STATE_MAIN_R2
Dec 17 10:21:23 localhost pluto[3828]: "vm"[1] 134.103.196.10:61036 #1: Main
mode peer ID is ID_IPV4_ADDR: '192.168.30.82'
Dec 17 10:21:23 localhost pluto[3828]: "vm"[2] 134.103.196.10:61036 #1:
deleting connection "vm" instance with peer 134.103.196.10
{isakmp=#0/ipsec=#0}
Dec 17 10:21:23 localhost pluto[3828]: "vm"[2] 134.103.196.10:61036 #1: I
did not send a certificate because I do not have one.
Dec 17 10:21:23 localhost pluto[3828]: "vm"[2] 134.103.196.10:61036 #1:
transition from state STATE_MAIN_R2 to state STATE_MAIN_R3
Dec 17 10:21:23 localhost pluto[3828]: "vm"[2] 134.103.196.10:61036 #1: sent
MR3, ISAKMP SA established
Dec 17 10:21:23 localhost pluto[3828]: "vm"[2] 134.103.196.10:61036 #1: next
payload type of ISAKMP Hash Payload has an unknown value: 207
Dec 17 10:21:23 localhost pluto[3828]: "vm"[2] 134.103.196.10:61036 #1:
malformed payload in packet
Dec 17 10:21:23 localhost pluto[3828]: "vm"[2] 134.103.196.10:61036 #1:
sending notification PAYLOAD_MALFORMED to 134.103.196.10:61036
Dec 17 10:21:44 localhost pluto[3828]: "vm"[2] 134.103.196.10:61036 #1:
retransmitting in response to duplicate packet; already STATE_MAIN_R3
Dec 17 10:22:24 localhost pluto[3828]: "vm"[2] 134.103.196.10:61036 #1:
retransmitting in response to duplicate packet; already STATE_MAIN_R3
Dec 17 10:22:25 localhost pluto[3828]: "vm"[2] 134.103.196.10:61036 #1: next
payload type of ISAKMP Hash Payload has an unknown value: 236
Dec 17 10:22:25 localhost pluto[3828]: "vm"[2] 134.103.196.10:61036 #1:
malformed payload in packet
Dec 17 10:22:25 localhost pluto[3828]: "vm"[2] 134.103.196.10:61036 #1:
sending notification PAYLOAD_MALFORMED to 134.103.196.10:61036



More information about the Users mailing list