Hi Friends,
I m trying to establish a Remote VPN session with Openswan, but I m
getting the below error message. I desperately need your help to solve this
problem, since I have been working on this for a long time. It would be
great if you provide meany working configuration with Openswan.
*./vpnc: response was invalid [1]: (ISAKMP_N_INVALID_EXCHANGE_TYPE)(7)*
S4.4 AM_packet2
[2012-03-26 22:34:06]
BEGIN_PARSE
Recieved Packet Len: 40
i_cookie: ac3bcea1 62a33381
r_cookie: 826f6427 0dc4a7f3
payload: 0b (ISAKMP_PAYLOAD_N)
isakmp_version: 10
exchange_type: 05 (ISAKMP_EXCHANGE_
INFORMATIONAL)
flags: 00
message_id: 00000000
len: 00000028
PARSING PAYLOAD type: 0b (ISAKMP_PAYLOAD_N)
next_type: 00 (ISAKMP_PAYLOAD_NONE)
length: 000c
n.doi: 00000001 (ISAKMP_DOI_IPSEC)
n.protocol: 01 (ISAKMP_IPSEC_PROTO_ISAKMP)
n.spi_length: 00
n.type: 000e (ISAKMP_N_NO_PROPOSAL_CHOSEN)
n.spi:
n.data:
DONE PARSING PAYLOAD type: 0b (ISAKMP_PAYLOAD_N)
PARSING PAYLOAD type: 00 (ISAKMP_PAYLOAD_NONE)
PARSE_OK
./vpnc: response was invalid [1]: (ISAKMP_N_INVALID_EXCHANGE_TYPE)(7)
*
Configuration
+++++++++*
IPSec gateway 172.31.114.227
IPSec ID tester.cas.com
IKE Authmode psk
IPSec secret mypresharedkey
NAT Traversal Mode natt
Xauth username tester
Xauth password tester
#Enable Triple DES
IKE DH Group dh2
debug 2
*
Openswan
+++++++++*
config setup
protostack=netkey
klipsdebug=all
plutodebug=all
nat_traversal=no
virtual_private=
oe=off
nhelpers=0
interfaces=%defaultroute
conn north-east
type=tunnel
right=%any
left=172.31.114.227
rightid=tester.cas.com
rightxauthclient=yes
leftxauthserver=yes
rightxauthusername=tester
aggrmode=yes
ike=3des-sha-modp1024
auto=add
authby=secret
pfs=no
*Secrets*
172.31.114.227 0.0.0.0: PSK "mypresharedkey"
@tester : XAUTH "tester"
Regards,
Saravanan.
I m trying to establish a Remote VPN session with Openswan, but I m
getting the below error message. I desperately need your help to solve this
problem, since I have been working on this for a long time. It would be
great if you provide meany working configuration with Openswan.
*./vpnc: response was invalid [1]: (ISAKMP_N_INVALID_EXCHANGE_TYPE)(7)*
S4.4 AM_packet2
[2012-03-26 22:34:06]
BEGIN_PARSE
Recieved Packet Len: 40
i_cookie: ac3bcea1 62a33381
r_cookie: 826f6427 0dc4a7f3
payload: 0b (ISAKMP_PAYLOAD_N)
isakmp_version: 10
exchange_type: 05 (ISAKMP_EXCHANGE_
INFORMATIONAL)
flags: 00
message_id: 00000000
len: 00000028
PARSING PAYLOAD type: 0b (ISAKMP_PAYLOAD_N)
next_type: 00 (ISAKMP_PAYLOAD_NONE)
length: 000c
n.doi: 00000001 (ISAKMP_DOI_IPSEC)
n.protocol: 01 (ISAKMP_IPSEC_PROTO_ISAKMP)
n.spi_length: 00
n.type: 000e (ISAKMP_N_NO_PROPOSAL_CHOSEN)
n.spi:
n.data:
DONE PARSING PAYLOAD type: 0b (ISAKMP_PAYLOAD_N)
PARSING PAYLOAD type: 00 (ISAKMP_PAYLOAD_NONE)
PARSE_OK
./vpnc: response was invalid [1]: (ISAKMP_N_INVALID_EXCHANGE_TYPE)(7)
*
Configuration
+++++++++*
IPSec gateway 172.31.114.227
IPSec ID tester.cas.com
IKE Authmode psk
IPSec secret mypresharedkey
NAT Traversal Mode natt
Xauth username tester
Xauth password tester
#Enable Triple DES
IKE DH Group dh2
debug 2
*
Openswan
+++++++++*
config setup
protostack=netkey
klipsdebug=all
plutodebug=all
nat_traversal=no
virtual_private=
oe=off
nhelpers=0
interfaces=%defaultroute
conn north-east
type=tunnel
right=%any
left=172.31.114.227
rightid=tester.cas.com
rightxauthclient=yes
leftxauthserver=yes
rightxauthusername=tester
aggrmode=yes
ike=3des-sha-modp1024
auto=add
authby=secret
pfs=no
*Secrets*
172.31.114.227 0.0.0.0: PSK "mypresharedkey"
@tester : XAUTH "tester"
Regards,
Saravanan.