[Openswan Users] invalid rcookie

Waldo, Ethan ewaldo at healthetechs.com
Tue Sep 16 11:27:51 EDT 2008

It's actually to a Cisco 7200 series router.  That's fine, I just wanted 
to check and see if this was anything that could be causing a problem.  
For some reason it seems like, even though the tunnel is up, that 
traffic stops flowing through the tunnel and I thought that potentially 
it was due to DPD not functioning.  I need to do more troubleshooting to 
determine if the route is dead, but I do know that I don't get a tunnel 
down state.  As long as you don't think they are related, I will 
continue with more detailed troubleshooting.

Interestingly enough, I do have a tunnel connecting to a Cisco 3030 and 
I don't get the invalid rcookie message.

-----Original Message-----
From: Paul Wouters [mailto:paul at xelerance.com] 
Sent: Tuesday, September 16, 2008 9:49 AM
To: Waldo, Ethan
Cc: users at openswan.org
Subject: Re: [Openswan Users] invalid rcookie

On Mon, 15 Sep 2008, Waldo, Ethan wrote:

> For some reason I am getting the following message only on the second 
IPSec session for a single tunnel.  The tunnel
> labeled VPN does not have this error message.  Can somebody tell me 
why this is occurring and if there is anything I
> can do to fix it?
> "VPN2" #2: DPD: Warning: R_U_THERE_ACK has invalid rcookie

Most likely you are connecting to a broken Cisco VPN3000?

We ignore the invalid contents and just pretend it is a yummy cookie.


More information about the Users mailing list