<br><div class="gmail_quote"><br>Hi,<br> I tried negotiating IKEv2 in openswan, but i am getting the below error message. Please find the logs below<br><br>received packet that claimed to be (I)nitiator, but rcookie is not zero?<br>
Feb 28 21:51:38 uxchas233 pluto[8164]: packet from <a href="http://172.31.114.239:500" target="_blank">172.31.114.239:500</a>: sending<br>
notification v2N_INVALID_MESSAGE_ID to <a href="http://172.31.114.239:500" target="_blank">172.31.114.239:500</a><br>Feb 28 21:51:48 uxchas233 pluto[8164]: packet from <a href="http://172.31.114.239:500" target="_blank">172.31.114.239:500</a>:<br>
received packet that claimed to be (I)nitiator, but rcookie is not zero?<br>
Feb 28 21:51:48 uxchas233 pluto[8164]: packet from <a href="http://172.31.114.239:500" target="_blank">172.31.114.239:500</a>: sending<br>notification v2N_INVALID_MESSAGE_ID to <a href="http://172.31.114.239:500" target="_blank">172.31.114.239:500</a><br>
Feb 28 21:51:58 uxchas233 pluto[8164]: packet from <a href="http://172.31.114.239:500" target="_blank">172.31.114.239:500</a>:<br>received packet that claimed to be (I)nitiator, but rcookie is not zero?<br>Feb 28 21:51:58 uxchas233 pluto[8164]: packet from <a href="http://172.31.114.239:500" target="_blank">172.31.114.239:500</a>: sending<br>
notification v2N_INVALID_MESSAGE_ID to <a href="http://172.31.114.239:500" target="_blank">172.31.114.239:500</a><br>Feb 28 21:52:08 uxchas233 pluto[8164]: packet from <a href="http://172.31.114.239:500" target="_blank">172.31.114.239:500</a>:<br>
received packet that claimed to be (I)nitiator, but rcookie is not zero?<br>
Feb 28 21:52:08 uxchas233 pluto[8164]: packet from <a href="http://172.31.114.239:500" target="_blank">172.31.114.239:500</a>: sending<br>notification v2N_INVALID_MESSAGE_ID to <a href="http://172.31.114.239:500" target="_blank">172.31.114.239:500</a><br>
<br>Openswan ------------------------------------------- Openswan<br>172.31.114.239 172.31.114.233<br><br>/etc/ipsec.conf<br>++++++++++<br># basic configuration<br>config setup<br> # Debug-logging controls: "none" for (almost) none, "all" for lots.<br>
# klipsdebug=none<br> # plutodebug="control parsing"<br> # For Red Hat Enterprise Linux and Fedora, leave protostack=netkey<br> protostack=netkey<br> nat_traversal=yes<br> virtual_private=<br>
oe=off<br> # Enable this if you see "failed to find any available worker"<br> nhelpers=0<br> interfaces=%defaultroute<br><br>conn west-east<br> type=transport<br> left=172.31.114.239<br>
right=172.31.114.233<br> leftsubnet=<a href="http://10.0.0.1/32" target="_blank">10.0.0.1/32</a><br> ikev2=yes<br> auto=add<br> authby=secret<br> pfs=no<br> rekey=yes<br> ikelifetime=600s<br> keylife=600s<br>
keyingtries=0<br>
<br>/etc/ipsec.secrets<br>++++++++++++++<br>172.31.114.239 <a href="http://172.31.114.233" target="_blank">172.31.114.233</a>: PSK "mypresharedkey"<br><br> Please help me out.<br>
</div><br>