[prev in list] [next in list] [prev in thread] [next in thread] 

List:       linux-ipsec
Subject:    [Users] problem with freeswan to freeswan
From:       Vittorio Muth <vmuth () hyperwave ! com>
Date:       2003-06-30 16:23:28
[Download RAW message or body]


hi,

we have two freeswan 1.99-hosts which we want to connect.

the error:

104 "vpn1" #138: STATE_MAIN_I1: initiate
106 "vpn1" #138: STATE_MAIN_I2: sent MI2, expecting MR2
108 "vpn1" #138: STATE_MAIN_I3: sent MI3, expecting MR3
003 "vpn1" #138: ignoring informational payload, type PAYLOAD_MALFORMED
003 "vpn1" #138: received and ignored informational message
003 "vpn1" #138: discarding duplicate packet; already STATE_MAIN_I3
010 "vpn1" #138: STATE_MAIN_I3: retransmission; will wait 20s for response

at the end I get:

"vpn1" #147: probable authentication failure (mismatch of preshared 
secrets?): malformed payload in packet

hm...

the ipsec.config is at both ends nearly the same (left and right is 
changed between the two hosts):

<snip>
conn hostA-hostB
         type=tunnel
         left=a.b.c.d
         leftnexthop=a.b.c.e
         leftsubnet=192.168.22.0/24
         right=h.i.j.k
         rightnexthop=h.i.j.l
         rightsubnet=192.168.33.0/24
         keyingtries=0
         keyexchange=ike
         authby=secret
         auth=esp
         pfs=no
         keylife=14400s
         ikelifetime=1800s
         rekeymargin=270s
</snip>


the ipsec.secrets is also nearly the same except that the addresses are 
changed:

localhost remotehost : PSK "oursharedsecret"


does anybody have an idea, why this doesn't work?


thx in advance, vittorio.



_______________________________________________
Users mailing list
Users@lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users
[prev in list] [next in list] [prev in thread] [next in thread]