[Openswan Users] Linux (debian lenny) client to Checkpoint Firewall NGx R65 using certificates - secureclient ok, openswan ko - PAYLOAD_MALFORMED

Ondrej Valousek webserv at s3group.cz
Thu May 13 09:04:43 EDT 2010

 > My wild guess is that the your Checkpoint only accepts SecurID 
clients and not authentication using certificates.
Yes, that's probably it. At main mode, your CP responds with 
ISAKMP_NEXT_N (which I do not know what it is) whereas it should respond 
with ISAKMP_NEXT_KE (which is most likely Key Exchange request -Paul to 


-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.openswan.org/pipermail/users/attachments/20100513/454847fe/attachment.html 

More information about the Users mailing list