[Openswan Users] openswan and sonicwall
Gary W. Smith
gary at primeexalia.com
Sat May 5 00:52:49 EDT 2007
Paul,
I changed the keys to something that should work, but still getting
INVALID_COOKIE error
"sonicwall" #1: ignoring informational payload, type INVALID_COOKIE
I found that if the passwords do match I don't get that far. So it
seems to be using the correct encryption. I've changes AES128 to 3DES
and tried that as well. All result in the same error.
config setup
#interfaces="ipsec0=eth0"
nat_traversal=yes
nhelpers=0
#klipsdebug=all
#plutodebug=all
klipsdebug=none
plutodebug=none
conn sonicwall
type=tunnel
left=IP
leftnexthop=GW
leftsubnet=10.9.9.0/24
leftid=@sonicwall
right=IP
rightsubnet=192.168.0.0/16
rightid=@GroupVPN
keyingtries=0
pfs=no
aggrmode=no
auto=start
auth=esp
ike=3des-sha1
esp=3des-sha1
authby=secret
xauth=yes
keyexchange=ike
Any ideas?
> -----Original Message-----
> From: Paul Wouters [mailto:paul at xelerance.com]
> Sent: Wednesday, May 02, 2007 8:34 PM
> To: Gary W. Smith
> Cc: Andy Gay; users at openswan.org
> Subject: Re: [Openswan Users] openswan and sonicwall
>
> On Wed, 2 May 2007, Gary W. Smith wrote:
>
> > That makes sense. I have checked and it matches but the production
> key
> > has a "!" in it. Is there a character limitation to the PSK?
>
> That might cause problems. I think there is an open bug report on
that,
> but I can't seem to find it. Definately try to change that, and let us
> know if this is really the case so we can file a new bug report.
>
> Paul
> --
> Building and integrating Virtual Private Networks with Openswan:
> http://www.amazon.com/gp/product/1904811256/104-3099591-
> 2946327?n=283155
More information about the Users
mailing list