[Openswan Users] ipsec error when establishing a connection
Paul Wouters
paul at xelerance.com
Thu Sep 18 10:28:22 EDT 2008
> Sep 18 16:29:31 wakaholik pluto[11557]: "vpn2" #6: next payload type of ISAKMP Hash Payload has an unknown value: 224
> Sep 18 16:29:31 wakaholik pluto[11557]: "vpn2" #6: malformed payload in packet
> Sep 18 16:29:31 wakaholik pluto[11557]: | payload malformed after IV
> Sep 18 16:29:31 wakaholik pluto[11557]: |
> Sep 18 16:29:31 wakaholik pluto[11557]: "vpn2" #6: sending notification PAYLOAD_MALFORMED to XXX.XXX.XXX.XXX:500
That could be a bad client or wrong PSK.
> Sep 18 16:37:17 wakaholik pluto[11557]: "vpn2" #7: ERROR: netlink_get_spi for esp.0 at YYY.YYY.YYY.YYY/4096/4294967295 failed with errno 22: Invalid argument
That usually means one of the XFRM related kernel modules is not loaded or present. Did you
include XFRM_USER, XFRM_* and ESP and crypto modules into the kernel?
ipsec barf should show these if it can find our config-* in /boot or /proc.
Paul
More information about the Users
mailing list