[Openswan Users] L2TP / IPSEC (certificate) with Cisco Systems, Inc./VPN 3000 Concentrator
Paul Wouters
paul at xelerance.com
Mon Oct 9 11:49:54 EDT 2006
On Mon, 9 Oct 2006, Dick wrote:
> I'm using openswan-2.4.4 on Gentoo Linux with a 2.6.17-gentoo-r8 kernel.
> I'd like to connect to our Cisco Systems, Inc./VPN 3000 Concentrator at
> 003 "L2TP-CERT-CLIENT" #1: ignoring Vendor ID payload [Cisco VPN 3000
> Series]
> 108 "L2TP-CERT-CLIENT" #1: STATE_MAIN_I3: sent MI3, expecting MR3
> 003 "L2TP-CERT-CLIENT" #1: discarding duplicate packet; already
> STATE_MAIN_I3
> 010 "L2TP-CERT-CLIENT" #1: STATE_MAIN_I3: retransmission; will wait 20s
> for response
There is some disagreement about the configuratin. This might be the
interop fix for Cisco VPN3000 that went into 2.4.5 to fix their 0 port
proposal.
So upgrade to 2.4.5 or newer and see if the problem remains.
Paul
More information about the Users
mailing list