[Openswan Users] Connecting to Checkpoint VPN-1
Eugene Kotlyarov
e.kotlyarov at gmail.com
Sat Apr 4 06:03:06 EDT 2009
Here is log with plutodebug="all"
I guess there are to many ISAKMP_NEXT_NAT-D payloads whatever this means.
Any ideas how to fix it?
Apr 4 13:48:56 ekot-desktop pluto[16979]: | **parse ISAKMP Message:
Apr 4 13:48:56 ekot-desktop pluto[16979]: | initiator cookie:
Apr 4 13:48:56 ekot-desktop pluto[16979]: | 20 47 c3 a0 88 7f 10 26
Apr 4 13:48:56 ekot-desktop pluto[16979]: | responder cookie:
Apr 4 13:48:56 ekot-desktop pluto[16979]: | a9 f4 99 04 86 0d 94 09
Apr 4 13:48:56 ekot-desktop pluto[16979]: | next payload type:
ISAKMP_NEXT_KE
Apr 4 13:48:56 ekot-desktop pluto[16979]: | ISAKMP version: ISAKMP Version
1.0
Apr 4 13:48:56 ekot-desktop pluto[16979]: | exchange type:
ISAKMP_XCHG_IDPROT
Apr 4 13:48:56 ekot-desktop pluto[16979]: | flags: none
Apr 4 13:48:56 ekot-desktop pluto[16979]: | message ID: 00 00 00 00
Apr 4 13:48:56 ekot-desktop pluto[16979]: | length: 620
Apr 4 13:48:56 ekot-desktop pluto[16979]: | processing packet with exchange
type=ISAKMP_XCHG_IDPROT (2)
Apr 4 13:48:56 ekot-desktop pluto[16979]: | ICOOKIE: 20 47 c3 a0 88 7f 10 26
Apr 4 13:48:56 ekot-desktop pluto[16979]: | RCOOKIE: a9 f4 99 04 86 0d 94 09
Apr 4 13:48:56 ekot-desktop pluto[16979]: | peer: c2 92 77 fe
Apr 4 13:48:56 ekot-desktop pluto[16979]: | state hash entry 8
Apr 4 13:48:56 ekot-desktop pluto[16979]: | peer and cookies match on #1,
provided msgid 00000000 vs 00000000
Apr 4 13:48:56 ekot-desktop pluto[16979]: | state object #1 found, in
STATE_MAIN_I2
Apr 4 13:48:56 ekot-desktop pluto[16979]: | processing connection
checkpoint-openswan
Apr 4 13:48:56 ekot-desktop pluto[16979]: | np=4 and sd=0x4a44d0
Apr 4 13:48:56 ekot-desktop pluto[16979]: | ***parse ISAKMP Key Exchange
Payload:
Apr 4 13:48:56 ekot-desktop pluto[16979]: | next payload type:
ISAKMP_NEXT_NONCE
Apr 4 13:48:56 ekot-desktop pluto[16979]: | length: 132
Apr 4 13:48:56 ekot-desktop pluto[16979]: | np=10 and sd=0x4a45b0
Apr 4 13:48:56 ekot-desktop pluto[16979]: | ***parse ISAKMP Nonce Payload:
Apr 4 13:48:56 ekot-desktop pluto[16979]: | next payload type:
ISAKMP_NEXT_CR
Apr 4 13:48:56 ekot-desktop pluto[16979]: | length: 24
Apr 4 13:48:56 ekot-desktop pluto[16979]: | np=7 and sd=0x4a4550
Apr 4 13:48:56 ekot-desktop pluto[16979]: | ***parse ISAKMP Certificate
RequestPayload:
Apr 4 13:48:56 ekot-desktop pluto[16979]: | next payload type:
ISAKMP_NEXT_CR
Apr 4 13:48:56 ekot-desktop pluto[16979]: | length: 31
Apr 4 13:48:56 ekot-desktop pluto[16979]: | cert type: CERT_X509_SIGNATURE
Apr 4 13:48:56 ekot-desktop pluto[16979]: | np=7 and sd=0x4a4550
Apr 4 13:48:56 ekot-desktop pluto[16979]: | ***parse ISAKMP Certificate
RequestPayload:
Apr 4 13:48:56 ekot-desktop pluto[16979]: | next payload type:
ISAKMP_NEXT_NAT-D
Apr 4 13:48:56 ekot-desktop pluto[16979]: | length: 5
Apr 4 13:48:56 ekot-desktop pluto[16979]: | cert type: CERT_X509_SIGNATURE
Apr 4 13:48:56 ekot-desktop pluto[16979]: | np=130 and sd=(nil)
Apr 4 13:48:56 ekot-desktop pluto[16979]: | ***parse ISAKMP NAT-D Payload:
Apr 4 13:48:56 ekot-desktop pluto[16979]: | next payload type:
ISAKMP_NEXT_NAT-D
Apr 4 13:48:56 ekot-desktop pluto[16979]: | length: 20
Apr 4 13:48:56 ekot-desktop pluto[16979]: | np=130 and sd=(nil)
Apr 4 13:48:56 ekot-desktop pluto[16979]: | ***parse ISAKMP NAT-D Payload:
Apr 4 13:48:56 ekot-desktop pluto[16979]: | next payload type:
ISAKMP_NEXT_NAT-D
Apr 4 13:48:56 ekot-desktop pluto[16979]: | length: 20
Apr 4 13:48:56 ekot-desktop pluto[16979]: | np=130 and sd=(nil)
Apr 4 13:48:56 ekot-desktop pluto[16979]: | ***parse ISAKMP NAT-D Payload:
Apr 4 13:48:56 ekot-desktop pluto[16979]: | next payload type:
ISAKMP_NEXT_NAT-D
Apr 4 13:48:56 ekot-desktop pluto[16979]: | length: 20
Apr 4 13:48:56 ekot-desktop pluto[16979]: | np=130 and sd=(nil)
Apr 4 13:48:56 ekot-desktop pluto[16979]: | ***parse ISAKMP NAT-D Payload:
Apr 4 13:48:56 ekot-desktop pluto[16979]: | next payload type:
ISAKMP_NEXT_NAT-D
Apr 4 13:48:56 ekot-desktop pluto[16979]: | length: 20
Apr 4 13:48:56 ekot-desktop pluto[16979]: | np=130 and sd=(nil)
Apr 4 13:48:56 ekot-desktop pluto[16979]: | ***parse ISAKMP NAT-D Payload:
Apr 4 13:48:56 ekot-desktop pluto[16979]: | next payload type:
ISAKMP_NEXT_NAT-D
Apr 4 13:48:56 ekot-desktop pluto[16979]: | length: 20
Apr 4 13:48:56 ekot-desktop pluto[16979]: | np=130 and sd=(nil)
Apr 4 13:48:56 ekot-desktop pluto[16979]: | ***parse ISAKMP NAT-D Payload:
Apr 4 13:48:56 ekot-desktop pluto[16979]: | next payload type:
ISAKMP_NEXT_NAT-D
Apr 4 13:48:56 ekot-desktop pluto[16979]: | length: 20
Apr 4 13:48:56 ekot-desktop pluto[16979]: | np=130 and sd=(nil)
Apr 4 13:48:56 ekot-desktop pluto[16979]: | ***parse ISAKMP NAT-D Payload:
Apr 4 13:48:56 ekot-desktop pluto[16979]: | next payload type:
ISAKMP_NEXT_NAT-D
Apr 4 13:48:56 ekot-desktop pluto[16979]: | length: 20
Apr 4 13:48:56 ekot-desktop pluto[16979]: | np=130 and sd=(nil)
Apr 4 13:48:56 ekot-desktop pluto[16979]: | ***parse ISAKMP NAT-D Payload:
Apr 4 13:48:56 ekot-desktop pluto[16979]: | next payload type:
ISAKMP_NEXT_NAT-D
Apr 4 13:48:56 ekot-desktop pluto[16979]: | length: 20
Apr 4 13:48:56 ekot-desktop pluto[16979]: | np=130 and sd=(nil)
Apr 4 13:48:56 ekot-desktop pluto[16979]: | ***parse ISAKMP NAT-D Payload:
Apr 4 13:48:56 ekot-desktop pluto[16979]: | next payload type:
ISAKMP_NEXT_NAT-D
Apr 4 13:48:56 ekot-desktop pluto[16979]: | length: 20
Apr 4 13:48:56 ekot-desktop pluto[16979]: | np=130 and sd=(nil)
Apr 4 13:48:56 ekot-desktop pluto[16979]: | ***parse ISAKMP NAT-D Payload:
Apr 4 13:48:56 ekot-desktop pluto[16979]: | next payload type:
ISAKMP_NEXT_NAT-D
Apr 4 13:48:56 ekot-desktop pluto[16979]: | length: 20
Apr 4 13:48:56 ekot-desktop pluto[16979]: | np=130 and sd=(nil)
Apr 4 13:48:56 ekot-desktop pluto[16979]: | ***parse ISAKMP NAT-D Payload:
Apr 4 13:48:56 ekot-desktop pluto[16979]: | next payload type:
ISAKMP_NEXT_NAT-D
Apr 4 13:48:56 ekot-desktop pluto[16979]: | length: 20
Apr 4 13:48:56 ekot-desktop pluto[16979]: | np=130 and sd=(nil)
Apr 4 13:48:56 ekot-desktop pluto[16979]: | ***parse ISAKMP NAT-D Payload:
Apr 4 13:48:56 ekot-desktop pluto[16979]: | next payload type:
ISAKMP_NEXT_NAT-D
Apr 4 13:48:56 ekot-desktop pluto[16979]: | length: 20
Apr 4 13:48:56 ekot-desktop pluto[16979]: | np=130 and sd=(nil)
Apr 4 13:48:56 ekot-desktop pluto[16979]: | ***parse ISAKMP NAT-D Payload:
Apr 4 13:48:56 ekot-desktop pluto[16979]: | next payload type:
ISAKMP_NEXT_NAT-D
Apr 4 13:48:56 ekot-desktop pluto[16979]: | length: 20
Apr 4 13:48:56 ekot-desktop pluto[16979]: | np=130 and sd=(nil)
Apr 4 13:48:56 ekot-desktop pluto[16979]: | ***parse ISAKMP NAT-D Payload:
Apr 4 13:48:56 ekot-desktop pluto[16979]: | next payload type:
ISAKMP_NEXT_NAT-D
Apr 4 13:48:56 ekot-desktop pluto[16979]: | length: 20
Apr 4 13:48:56 ekot-desktop pluto[16979]: | np=130 and sd=(nil)
Apr 4 13:48:56 ekot-desktop pluto[16979]: | ***parse ISAKMP NAT-D Payload:
Apr 4 13:48:56 ekot-desktop pluto[16979]: | next payload type:
ISAKMP_NEXT_NAT-D
Apr 4 13:48:56 ekot-desktop pluto[16979]: | length: 20
Apr 4 13:48:56 ekot-desktop pluto[16979]: | np=130 and sd=(nil)
Apr 4 13:48:56 ekot-desktop pluto[16979]: | ***parse ISAKMP NAT-D Payload:
Apr 4 13:48:56 ekot-desktop pluto[16979]: | next payload type:
ISAKMP_NEXT_NAT-D
Apr 4 13:48:56 ekot-desktop pluto[16979]: | length: 20
Apr 4 13:48:56 ekot-desktop pluto[16979]: "checkpoint-openswan" #1: more
than 20 payloads in message; ignored
Apr 4 13:48:56 ekot-desktop pluto[16979]: | payload malformed after IV
Apr 4 13:48:56 ekot-desktop pluto[16979]: |
Apr 4 13:48:56 ekot-desktop pluto[16979]: "checkpoint-openswan" #1: sending
notification PAYLOAD_MALFORMED to xxx.xxx.xxx.xxx:500
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.openswan.org/pipermail/users/attachments/20090404/4937031e/attachment-0001.html
More information about the Users
mailing list