[Openswan Users] Can't connect to VPN Server

Paul Wouters paul at xelerance.com
Tue Aug 31 13:10:35 EDT 2010


On Tue, 31 Aug 2010, Adam Wu wrote:

> I install the openswan in Linux, and connect to the VPN Server but fail.
> What is wrong with it?
> The connect message is:
> 002 "wan" #1: initiating Main Mode
> 104 "wan" #1: STATE_MAIN_I1: initiate
> 003 "wan" #1: ignoring Vendor ID payload [strongSwan 4.0.7]

Looks like the remote peer is strongswan

> 002 "wan" #1: transition from state STATE_MAIN_I2 to state STATE_MAIN_I3
> 108 "wan" #1: STATE_MAIN_I3: sent MI3, expecting MR3
> 003 "wan" #1: next payload type of ISAKMP Hash Payload has an unknown value: 217
> 003 "wan" #1: malformed payload in packet
> 002 "wan" #1: sending notification PAYLOAD_MALFORMED to 202.118.7.98:4500
> 003 "wan" #1: discarding duplicate packet; already STATE_MAIN_I3

This could be a bug in strongswan, or perhaps a mismatched PSK?

What version of openswan is this? If it is a recent openswan (eg 2.4.15 or
2.6.2x) then the openswan side should be fine.

strongswan 4.0.7 seems old? Perhaps upgrade that end first?

Paul


More information about the Users mailing list