[Openswan Users] L2TP / IPSEC (certificate) with Cisco Systems, Inc./VPN 3000 Concentrator

Dick dm at chello.nl
Mon Oct 9 13:03:05 EDT 2006


> So upgrade to 2.4.5 or newer and see if the problem remains.

Thanks for you reply, I've upgraded to 2.4.5:

ipsec_setup: Starting Openswan IPsec U2.4.5/K2.6.17-gentoo-r8...

# ipsec auto --up L2TP-CERT-CLIENT
104 "L2TP-CERT-CLIENT" #1: STATE_MAIN_I1: initiate
003 "L2TP-CERT-CLIENT" #1: ignoring unknown Vendor ID payload [4048b7d56ebce...
106 "L2TP-CERT-CLIENT" #1: STATE_MAIN_I2: sent MI2, expecting MR2
003 "L2TP-CERT-CLIENT" #1: received Vendor ID payload [Cisco-Unity]
003 "L2TP-CERT-CLIENT" #1: received Vendor ID payload [XAUTH]
003 "L2TP-CERT-CLIENT" #1: ignoring unknown Vendor ID payload [6e8371ffe2977...
003 "L2TP-CERT-CLIENT" #1: ignoring Vendor ID payload [Cisco VPN 3000 Series]
108 "L2TP-CERT-CLIENT" #1: STATE_MAIN_I3: sent MI3, expecting MR3
003 "L2TP-CERT-CLIENT" #1: discarding duplicate packet; already STATE_MAIN_I3
010 "L2TP-CERT-CLIENT" #1: STATE_MAIN_I3: retransmission; will wait 20s for res
003 "L2TP-CERT-CLIENT" #1: discarding duplicate packet; already STATE_MAIN_I3
003 "L2TP-CERT-CLIENT" #1: discarding duplicate packet; already STATE_MAIN_I3
010 "L2TP-CERT-CLIENT" #1: STATE_MAIN_I3: retransmission; will wait 40s for res
003 "L2TP-CERT-CLIENT" #1: next payload type of ISAKMP ... unknown value: 183
003 "L2TP-CERT-CLIENT" #1: malformed payload in packet
031 "L2TP-CERT-CLIENT" #1: max number of retransmissions (2) reached ...
000 "L2TP-CERT-CLIENT" #1: starting keying attempt 2 of at most 3, but releasi...

It seems it didn't fix my problem, any other suggestions?

Dick



More information about the Users mailing list