Релиб / Unix и Linux / Разное / проблема c openswan - malformed payload in packet / Latest PostsInstantForum.NET v4.1.4Релибhttp://www.relib.com/forums/robot@relib.comWed, 03 Dec 2008 06:24:09 GMT20RE: проблема c openswan - malformed payload in packethttp://www.relib.com/forums/Topic898667-13-1.aspx<BLOCKQUOTE><FONT color=#111111># tail /var/log/secure<BR>Jun 14 14:12:34 gw pluto[1875]: packet from x.x.x.x:500: initial Main Mode message received on 213.80.135.138:500 but no connection has been authorized<BR>Jun 14 14:12:38 gw pluto[1875]: packet from x.x.x.x:500: ignoring unknown Vendor ID payload [afc...]<BR>Jun 14 14:12:38 gw pluto[1875]: packet from x.x.x.x:500: ignoring unknown Vendor ID payload [625...]</FONT> <P>PS: если это о чем-то говорит :-? </P></BLOCKQUOTE>Wed, 14 Jun 2006 14:19:08 GMTERgeпроблема c openswan - malformed payload in packethttp://www.relib.com/forums/Topic898667-13-1.aspx<BLOCKQUOTE>мой локальный шлюз<BR>ASPLinux<BR>openswan-2.4.4-1.0.FC4.1 <P>удаленный на каком-то зюхеле<BR>с той стороны вроде как все настроено <P>у меня в конфе следующее:<BR><FONT color=#111111>conn myconn<BR> type=tunnel<BR> left=мой внешний ip<BR> leftsubnet=моя подсеть/24<BR> right=удаленный шлюз<BR> rightsubnet=удаленная подсеть/24<BR> authby=secret<BR> disablearrivalcheck=no<BR> pfs=no<BR> auto=start</FONT> <P>першаред кей сделал. <P>но при поднятии канала ругается:<BR><FONT color=#111111>[root@gw ~]# ipsec auto --up myconn<BR>104 "myconn" #12: STATE_MAIN_I1: initiate<BR>003 "myconn" #12: ignoring unknown Vendor ID payload [afc....]<BR>003 "myconn" #12: ignoring unknown Vendor ID payload [625....]<BR>106 "myconn" #12: STATE_MAIN_I2: sent MI2, expecting MR2<BR>108 "myconn" #12: STATE_MAIN_I3: sent MI3, expecting MR3<BR>003 "myconn" #12: next payload type of ISAKMP Hash Payload has an unknown value: 66<BR>003 "myconn" #12: malformed payload in packet<BR>010 "myconn" #12: STATE_MAIN_I3: retransmission; will wait 20s for response<BR>003 "myconn" #12: byte 2 of ISAKMP Hash Payload must be zero, but is not<BR>003 "myconn" #12: malformed payload in packet<BR>010 "myconn" #12: STATE_MAIN_I3: retransmission; will wait 40s for response<BR>003 "myconn" #12: byte 2 of ISAKMP Hash Payload must be zero, but is not<BR>003 "myconn" #12: malformed payload in packet<BR>031 "myconn" #12: max number of retransmissions (2) reached STATE_MAIN_I3. Possible authentication failure: no acceptable response to our first encrypted message<BR>000 "myconn" #12: starting keying attempt 2 of an unlimited number, but releasing whack </FONT><P><BR>хотя на другой машине (другая фирма) с такими же настройками и фрисваном все работает. <P>в чем может быть трабл?<BR>помогите настроить... <P>PS: сам не админ, потому прошу прощения за возможно глупые вопросы... </P></BLOCKQUOTE>Wed, 14 Jun 2006 11:34:04 GMTERge