[Openswan Users] malfomed payload errors

Geoff Galitz geoff at galitz.org
Mon Oct 12 04:53:11 EDT 2009


> Jivin Geoff Galitz lays it down ...
> > Good day,
> >
> > I am having trouble connecting to a Checkpoint FW-1.  I don't have
> access to the remote logs.  Here is the debug output:
> >
> > http://pastebin.com/m3f98e30a
> >
> > The config file is:
> 
> 
> Which version of openswan are you using ?

openswan-2.6.16-1.49.3 on OpenSUSE 11.1

> 
> Cheers,
> Davidm
> 
> > ------------------------------------------------------------------------
> ----------------------------------------
> >
> > version 2.0     # conforms to second version of ipsec.conf specification
> >
> >
> >
> > config setup
> >
> >         plutodebug="control parsing emitting"
> >
> >         nat_traversal=yes
> >
> >         OE=off
> >
> >         protostack=netkey
> >
> >
> >
> >
> >
> > conn remotet
> >
> >
> >
> >         left=x.x.x.x  # nat host ip
> >
> >         leftid=x.x.x.x # public ip
> >
> >         leftnexthop=%defaultroute
> >
> >         right=x.x.x.x
> >
> >         rightnexthop=%defaultroute
> >
> >         auth=esp
> >
> >         authby=secret
> >
> >         auto=add
> >
> >         pfs=yes
> >
> >         ike=3des-sha1-modp1024
> >
> >         esp=3des-sha1,aes-md5
> >
> >         keyexchange=ike
> >
> >         ikelifetime=1440m
> >
> >         keylife=3660s
> >
> > #      ikev2=yes
> >
> >




More information about the Users mailing list