[Openswan Users] ipsec error when establishing a connection

samuel Karuga samuelkaruga at yahoo.co.uk
Thu Sep 18 04:59:40 EDT 2008


hi mailing list,
    I managed to install openswan ipsec on a fedora 8 system with no serious problems but have hit a wall when it comes to establishing a connection between the two target systems. i have installed ipsec before and im sure that all the configs are okay and should work since i copied them from a working ipsec configuration and adopted them for the second system.

here is an extract of ipsec barf output:
 
Sep 18 16:29:11 wakaholik pluto[11557]: "vpn2" #6: sending notification PAYLOAD_MALFORMED to XXX.XXX.XXX.XXX:500
Sep 18 16:29:31 wakaholik pluto[11557]: "vpn2" #6: next payload type of ISAKMP Hash Payload has an unknown value: 224
Sep 18 16:29:31 wakaholik pluto[11557]: "vpn2" #6: malformed payload in packet
Sep 18 16:29:31 wakaholik pluto[11557]: | payload malformed after IV
Sep 18 16:29:31 wakaholik pluto[11557]: | 
Sep 18 16:29:31 wakaholik pluto[11557]: "vpn2" #6: sending notification PAYLOAD_MALFORMED to XXX.XXX.XXX.XXX:500
Sep 18 16:37:17 wakaholik pluto[11557]: "vpn2" #7: initiating Quick Mode PSK+ENCRYPT+TUNNEL+PFS+UP {using isakmp#3}
Sep 18 16:37:17 wakaholik pluto[11557]: "vpn2" #7: ERROR: netlink_get_spi for esp.0 at YYY.YYY.YYY.YYY/4096/4294967295 failed with errno 22: Invalid argument


I get this error when i try to establish a connection using: ipsec auto --up vpn2

ipsec auto --up vpn2
003 "vpn2" #8: ERROR: netlink_get_spi for esp.0 at YYY.YYY.YYY.YYY/4096/4294967295 failed with errno 22: Invalid argument

I have tried google and tinkering with my config files but the problem remains the same. What could be the cause the netlink error?




      
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.openswan.org/pipermail/users/attachments/20080918/39e9ac4e/attachment.html 


More information about the Users mailing list