[Openswan Users] STF_INTERNAL_ERROR

Jim Ewert jim.ewert at excite.com
Fri Jul 22 19:00:34 CEST 2005 

 openswan-2.4.0dr6, patched l2tpd-10jdl, Linux 2.6 server, xp sp2 client with registry mod.  files & trace is attached if available, or I can email it & provide more details.  xp gives Error 678:  The remote computer did not respond.  Thanks.

Jul 22 17:19:54 edgessqwest pluto[11256]: | *received 52 bytes from 192.168.10.224:500 on eth0 (port=500)
Jul 22 17:19:54 edgessqwest pluto[11256]: |   75 eb 4a b0  53 d0 8b 30  cf fa ef 6f  5e c4 62 92
Jul 22 17:19:54 edgessqwest pluto[11256]: |   08 10 20 01  85 3a 64 b7  00 00 00 34  12 b6 c5 bc
Jul 22 17:19:54 edgessqwest pluto[11256]: |   0b 15 21 12  05 b1 00 b3  ea 87 3b a7  d5 2f ec 0b
Jul 22 17:19:54 edgessqwest pluto[11256]: |   8a 3d cb ac
Jul 22 17:19:54 edgessqwest pluto[11256]: | **parse ISAKMP Message:
Jul 22 17:19:54 edgessqwest pluto[11256]: |    initiator cookie:
Jul 22 17:19:54 edgessqwest pluto[11256]: |   75 eb 4a b0  53 d0 8b 30
Jul 22 17:19:54 edgessqwest pluto[11256]: |    responder cookie:
Jul 22 17:19:54 edgessqwest pluto[11256]: |   cf fa ef 6f  5e c4 62 92
Jul 22 17:19:54 edgessqwest pluto[11256]: |    next payload type: ISAKMP_NEXT_HASH
Jul 22 17:19:54 edgessqwest pluto[11256]: |    ISAKMP version: ISAKMP Version 1.0
Jul 22 17:19:54 edgessqwest pluto[11256]: |    exchange type: ISAKMP_XCHG_QUICK
Jul 22 17:19:54 edgessqwest pluto[11256]: |    flags: ISAKMP_FLAG_ENCRYPTION
Jul 22 17:19:54 edgessqwest pluto[11256]: |    message ID:  85 3a 64 b7
Jul 22 17:19:54 edgessqwest pluto[11256]: |    length: 52
Jul 22 17:19:54 edgessqwest pluto[11256]: | ICOOKIE:  75 eb 4a b0  53 d0 8b 30
Jul 22 17:19:54 edgessqwest pluto[11256]: | RCOOKIE:  cf fa ef 6f  5e c4 62 92
Jul 22 17:19:54 edgessqwest pluto[11256]: | peer:  c0 a8 0a e0
Jul 22 17:19:54 edgessqwest pluto[11256]: | state hash entry 17
Jul 22 17:19:54 edgessqwest pluto[11256]: | peer and cookies match on #6, provided msgid 853a64b7 vs 853a64b7
Jul 22 17:19:54 edgessqwest pluto[11256]: | state object #6 found, in STATE_QUICK_R1
Jul 22 17:19:54 edgessqwest pluto[11256]: | processing connection L2TP-PSK-orgWIN2KXP[2] 192.168.10.224
Jul 22 17:19:54 edgessqwest pluto[11256]: | received encrypted packet from 192.168.10.224:500
Jul 22 17:19:54 edgessqwest pluto[11256]: | decrypting 24 bytes using algorithm OAKLEY_3DES_CBC
Jul 22 17:19:54 edgessqwest pluto[11256]: | decrypted:
Jul 22 17:19:54 edgessqwest pluto[11256]: |   00 00 00 18  7b c2 79 f8  ac 6f 35 5d  ab c3 20 d5
Jul 22 17:19:54 edgessqwest pluto[11256]: |   bd ff 67 f7  85 6e 07 3c
Jul 22 17:19:54 edgessqwest pluto[11256]: | next IV:  d5 2f ec 0b  8a 3d cb ac
Jul 22 17:19:54 edgessqwest pluto[11256]: | ***parse ISAKMP Hash Payload:
Jul 22 17:19:54 edgessqwest pluto[11256]: |    next payload type: ISAKMP_NEXT_NONE
Jul 22 17:19:54 edgessqwest pluto[11256]: |    length: 24
Jul 22 17:19:54 edgessqwest pluto[11256]: | HASH(3) computed:  7b c2 79 f8  ac 6f 35 5d  ab c3 20 d5  bd ff 67 f7
Jul 22 17:19:54 edgessqwest pluto[11256]: |   85 6e 07 3c
Jul 22 17:19:54 edgessqwest pluto[11256]: | install_ipsec_sa() for #6: outbound only
Jul 22 17:19:54 edgessqwest pluto[11256]: | route owner of "L2TP-PSK-orgWIN2KXP"[2] 192.168.10.224 unrouted: NULL; eroute owner: NULL
Jul 22 17:19:54 edgessqwest pluto[11256]: | could_route called for L2TP-PSK-orgWIN2KXP (kind=CK_INSTANCE)
Jul 22 17:19:54 edgessqwest pluto[11256]: | looking for alg with transid: 3 keylen: 0 auth: 1 
Jul 22 17:19:54 edgessqwest pluto[11256]: | checking transid: 11 keylen: 0 auth: 1 
Jul 22 17:19:54 edgessqwest pluto[11256]: | checking transid: 11 keylen: 0 auth: 2 
Jul 22 17:19:54 edgessqwest pluto[11256]: | checking transid: 2 keylen: 8 auth: 0 
Jul 22 17:19:54 edgessqwest pluto[11256]: | checking transid: 2 keylen: 8 auth: 1 
Jul 22 17:19:54 edgessqwest pluto[11256]: | checking transid: 2 keylen: 8 auth: 2 
Jul 22 17:19:54 edgessqwest pluto[11256]: | checking transid: 3 keylen: 24 auth: 0 
Jul 22 17:19:54 edgessqwest pluto[11256]: | checking transid: 3 keylen: 24 auth: 1 
Jul 22 17:19:54 edgessqwest pluto[11256]: | sr for #6: unrouted
Jul 22 17:19:54 edgessqwest pluto[11256]: | route owner of "L2TP-PSK-orgWIN2KXP"[2] 192.168.10.224 unrouted: NULL; eroute owner: NULL
Jul 22 17:19:54 edgessqwest pluto[11256]: | route_and_eroute with c: L2TP-PSK-orgWIN2KXP (next: none) ero:null esr:{(nil)} ro:null rosr:{(nil)} and state: 6
Jul 22 17:19:54 edgessqwest pluto[11256]: | eroute_connection add eroute 192.168.10.237/32:1701 --17-> 192.168.10.224/32:1701 => esp.965cb64c at 192.168.10.224 (raw_eroute)
Jul 22 17:19:54 edgessqwest pluto[11256]: | command executing up-host
Jul 22 17:19:54 edgessqwest pluto[11256]: |   trusted_ca called with a=C=US, ST=FL, L=tpa, O=ea, CN=je b=(empty)
Jul 22 17:19:54 edgessqwest pluto[11256]: | executing up-host: 2>&1 PLUTO_VERSION='1.1' PLUTO_VERB='up-host' PLUTO_CONNECTION='L2TP-PSK-orgWIN2KXP' PLUTO_NEXT_HOP='192.168.10.224' PLUTO_INTERFACE='eth0' PLUTO_ME='192.168.10.237' PLUTO_MY_ID='C=US, ST=FL, O=ea2, CN=je2' PLUTO_MY_CLIENT='192.168.10.237/32' PLUTO_MY_CLIENT_NET='192.168.10.237' PLUTO_MY_CLIENT_MASK='255.255.255.255' PLUTO_MY_PORT='1701' PLUTO_MY_PROTOCOL='17' PLUTO_PEER='192.168.10.224' PLUTO_PEER_ID='C=US, ST=FL, O=ea2, CN=je2' PLUTO_PEER_CLIENT='192.168.10.224/32' PLUTO_PEER_CLIENT_NET='192.168.10.224' PLUTO_PEER_CLIENT_MASK='255.255.255.255' PLUTO_PEER_PORT='1701' PLUTO_PEER_PROTOCOL='17' PLUTO_PEER_CA='C=US, ST=FL, L=tpa, O=ea, CN=je' PLUTO_CONN_POLICY='RSASIG+ENCRYPT+COMPRESS'   ipsec _updown
Jul 22 17:19:54 edgessqwest pluto[11256]: "L2TP-PSK-orgWIN2KXP"[2] 192.168.10.224 #6: up-host command exited with status 139
Jul 22 17:19:54 edgessqwest pluto[11256]: | route_and_eroute: firewall_notified: false
Jul 22 17:19:54 edgessqwest pluto[11256]: | eroute_connection delete eroute 192.168.10.237/32:1701 --17-> 192.168.10.224/32:1701 => esp.965cb64c at 192.168.10.224 (raw_eroute)
Jul 22 17:19:54 edgessqwest pluto[11256]: | delete esp.965cb64c at 192.168.10.224
Jul 22 17:19:54 edgessqwest pluto[11256]: | delete inbound eroute 192.168.10.224/32:1701 --17-> 192.168.10.237/32:1701 => unk255.10000 at 192.168.10.237 (raw_eroute)
Jul 22 17:19:54 edgessqwest pluto[11256]: | delete esp.c332a3d6 at 192.168.10.237
Jul 22 17:19:54 edgessqwest pluto[11256]: | complete state transition with STF_INTERNAL_ERROR
Jul 22 17:19:54 edgessqwest pluto[11256]: | state transition function for STATE_QUICK_R1 had internal error

_______________________________________________
Join Excite! - http://www.excite.com
The most personalized portal on the Web!
-------------- next part --------------
A non-text attachment was scrubbed...
Name: trace
Type: application/octet-stream
Size: 616214 bytes
Desc: not available
Url : http://lists.openswan.org/pipermail/users/attachments/20050722/6e2cec0b/trace-0001.obj

More information about the Users mailing list