[Openswan Users] NONESP-encap

Marco Berizzi pupilla at hotmail.com
Wed Feb 22 18:24:27 CET 2006 

I'm running openswan 2.4.5rc4 on linux 2.6.15 with netkey.
One of our roadwarrior cannot connect to out private net
so I did a tcpdump capture on the linux box external nic.
Here is the tcpdump output:

16:23:21.569532 IP (tos 0x0, ttl 106, id 440, offset 0, flags [none], proto: 
UDP (17), length: 304) road-warrior.500 > venezia-gateway.500: isakmp 1.0 
msgid  cookie ->: phase 1 I ident: [|sa]
16:23:21.571089 IP (tos 0x0, ttl  64, id 8125, offset 0, flags [DF], proto: 
UDP (17), length: 168) venezia-gateway.500 > road-warrior.500: isakmp 1.0 
msgid  cookie ->: phase 1 R ident: [|sa]
16:23:21.729389 IP (tos 0x0, ttl 106, id 441, offset 0, flags [none], proto: 
UDP (17), length: 260) road-warrior.500 > venezia-gateway.500: isakmp 1.0 
msgid  cookie ->: phase 1 I ident: [|ke]
16:23:21.762694 IP (tos 0x0, ttl  64, id 8126, offset 0, flags [DF], proto: 
UDP (17), length: 256) venezia-gateway.500 > road-warrior.500: isakmp 1.0 
msgid  cookie ->: phase 1 R ident: [|ke]
16:23:21.990956 IP (tos 0x0, ttl 106, id 442, offset 0, flags [+], proto: 
UDP (17), length: 1500) road-warrior.4500 > venezia-gateway.4500: 
NONESP-encap: isakmp 1.0 msgid  cookie ->: phase 1 I ident[E]: [encrypted 
id] (len mismatch: isakmp 1988/ip 1468)
16:23:21.991789 IP (tos 0x0, ttl 106, id 442, offset 1480, flags [none], 
proto: UDP (17), length: 540) road-warrior > venezia-gateway: udp
16:23:22.126529 IP (tos 0x0, ttl  64, id 6415, offset 0, flags [+], proto: 
UDP (17), length: 1500) venezia-gateway.4500 > road-warrior.4500: 
NONESP-encap: isakmp 1.0 msgid  cookie ->: phase 1 R ident[E]: [encrypted 
id] (len mismatch: isakmp 1620/ip 1468)
16:23:22.126544 IP (tos 0x0, ttl  64, id 6415, offset 1480, flags [none], 
proto: UDP (17), length: 172) venezia-gateway > road-warrior: udp
16:23:25.220371 IP (tos 0x0, ttl 106, id 447, offset 0, flags [+], proto: 
UDP (17), length: 1500) road-warrior.4500 > venezia-gateway.4500: 
NONESP-encap: isakmp 1.0 msgid  cookie ->: phase 1 I ident[E]: [encrypted 
id] (len mismatch: isakmp 1988/ip 1468)
16:23:25.221030 IP (tos 0x0, ttl 106, id 447, offset 1480, flags [none], 
proto: UDP (17), length: 540) road-warrior > venezia-gateway: udp
16:23:25.222494 IP (tos 0x0, ttl  64, id 6416, offset 0, flags [+], proto: 
UDP (17), length: 1500) venezia-gateway.4500 > road-warrior.4500: 
NONESP-encap: isakmp 1.0 msgid  cookie ->: phase 1 R ident[E]: [encrypted 
id] (len mismatch: isakmp 1620/ip 1468)
16:23:25.222508 IP (tos 0x0, ttl  64, id 6416, offset 1480, flags [none], 
proto: UDP (17), length: 172) venezia-gateway > road-warrior: udp
16:23:29.231139 IP (tos 0x0, ttl 106, id 452, offset 0, flags [+], proto: 
UDP (17), length: 1500) road-warrior.4500 > venezia-gateway.4500: 
NONESP-encap: isakmp 1.0 msgid  cookie ->: phase 1 I ident[E]: [encrypted 
id] (len mismatch: isakmp 1988/ip 1468)
16:23:29.231821 IP (tos 0x0, ttl 106, id 452, offset 1480, flags [none], 
proto: UDP (17), length: 540) road-warrior > venezia-gateway: udp
16:23:29.232910 IP (tos 0x0, ttl  64, id 6417, offset 0, flags [+], proto: 
UDP (17), length: 1500) venezia-gateway.4500 > road-warrior.4500: 
NONESP-encap: isakmp 1.0 msgid  cookie ->: phase 1 R ident[E]: [encrypted 
id] (len mismatch: isakmp 1620/ip 1468)
16:23:29.232926 IP (tos 0x0, ttl  64, id 6417, offset 1480, flags [none], 
proto: UDP (17), length: 172) venezia-gateway > road-warrior: udp
16:23:37.222596 IP (tos 0x0, ttl 106, id 461, offset 0, flags [+], proto: 
UDP (17), length: 1500) road-warrior.4500 > venezia-gateway.4500: 
NONESP-encap: isakmp 1.0 msgid  cookie ->: phase 1 I ident[E]: [encrypted 
id] (len mismatch: isakmp 1988/ip 1468)
16:23:37.223249 IP (tos 0x0, ttl 106, id 461, offset 1480, flags [none], 
proto: UDP (17), length: 540) road-warrior > venezia-gateway: udp
16:23:53.225949 IP (tos 0x0, ttl 106, id 471, offset 0, flags [+], proto: 
UDP (17), length: 1500) road-warrior.4500 > venezia-gateway.4500: 
NONESP-encap: isakmp 1.0 msgid  cookie ->: phase 1 I ident[E]: [encrypted 
id] (len mismatch: isakmp 1988/ip 1468)
16:23:53.233347 IP (tos 0x0, ttl 106, id 471, offset 1480, flags [none], 
proto: UDP (17), length: 540) road-warrior > venezia-gateway: udp

Hints?

More information about the Users mailing list