[Openswan Users] sending notification PAYLOAD_MALFORMED

Paul Young paul at arkig.com
Tue Sep 24 00:08:27 UTC 2013 

The next things I did was change the PSK to something really simple - did
not change the symptoms.

So now I have rebuilt the entire server on one side and am starting from
scratch. Which is bulls__t

But I don't have much time to get this to work


On 24 September 2013 07:10, Paul Young <paul at arkig.com> wrote:

> Hi Leto,
>
> Thanks for the reply. It looks ok and I basically generated the PSK with:
>
> ipsec ranbits --continuous 128
>
> Cheers,
> Paul
>
>
> On 24 September 2013 02:52, Leto <letoams at gmail.com> wrote:
>
>> try avoiding some strange characters in the psk. ensure you're not mixing
>> up ASCII vs hex?
>>
>> sent from a tiny device
>>
>> On 2013-09-23, at 10:09, Paul Young <paul at arkig.com> wrote:
>>
>> Hi Guys,
>>
>> What other reasons other than mismatched PSKs could cause this issue?
>>
>> Thanks
>>
>>
>> On 23 September 2013 18:46, Paul Young <paul at arkig.com> wrote:
>>
>>> I also just tried replacing the PSK on both sides and got the same issue
>>> continued
>>>
>>>
>>> On 23 September 2013 18:39, Paul Young <paul at arkig.com> wrote:
>>>
>>>> Hi all,
>>>>
>>>> After rebooting one side of my Openswan setup without changing config
>>>> and so on I am getting this error and cannot create a tunnel anymore.
>>>>
>>>> The reason I rebooted the host is I applied a bunch of firmware updates
>>>> to the hardware.
>>>>
>>>> Sep 23 18:33:23 lobster pluto[38968]: "conn"[11] <outside IP address>
>>>> #55: next payload type of ISAKMP Identification Payload has an unknown
>>>> value: 23
>>>> Sep 23 18:33:23 lobster pluto[38968]: "conn"[11] <outside IP address>
>>>> #55: probable authentication failure (mismatch of preshared secrets?):
>>>> malformed payload in packet
>>>> Sep 23 18:33:23 lobster pluto[38968]: | payload malformed after IV
>>>> Sep 23 18:33:23 lobster pluto[38968]: |   74 40 8b d3  5a 30 3e 52  dc
>>>> 54 26 a5  d9 88 bc e9
>>>> Sep 23 18:33:23 lobster pluto[38968]: |   e4 ea 8e 4b
>>>> Sep 23 18:33:23 lobster pluto[38968]: "conn"[11] <outside IP address>
>>>> #55: sending notification PAYLOAD_MALFORMED to <outside IP address>:500
>>>>
>>>> I have triple checked the PSK and it appears to be fine. What am I
>>>> missing?
>>>>
>>>> Thanks,
>>>> Paul
>>>>
>>>
>>>
>> _______________________________________________
>> Users at lists.openswan.org
>> https://lists.openswan.org/mailman/listinfo/users
>> Micropayments: https://flattr.com/thing/38387/IPsec-for-Linux-made-easy
>> Building and Integrating Virtual Private Networks with Openswan:
>> http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155
>>
>>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openswan.org/pipermail/users/attachments/20130924/679eb9d3/attachment-0001.html>

More information about the Users mailing list