Mailing List Archive: vpnc: devel

./vpnc: response was invalid [1]: (ISAKMP_N_INVALID_EXCHANGE_TYPE)(7)

Index | Next | Previous | View Threaded

saravanan.nagarajan87 at gmail

Mar 26, 2012, 8:43 AM

Post #1 of 3 (1099 views)
Permalink

./vpnc: response was invalid [1]: (ISAKMP_N_INVALID_EXCHANGE_TYPE)(7)

Hi Friends,
I m trying to establish a Remote VPN session with Openswan, but I m
getting the below error message. I desperately need your help to solve this
problem, since I have been working on this for a long time. It would be
great if you provide meany working configuration with Openswan.

*./vpnc: response was invalid [1]: (ISAKMP_N_INVALID_EXCHANGE_TYPE)(7)*
S4.4 AM_packet2
[2012-03-26 22:34:06]
BEGIN_PARSE
Recieved Packet Len: 40
i_cookie: ac3bcea1 62a33381
r_cookie: 826f6427 0dc4a7f3
payload: 0b (ISAKMP_PAYLOAD_N)
isakmp_version: 10
exchange_type: 05 (ISAKMP_EXCHANGE_
INFORMATIONAL)
flags: 00
message_id: 00000000
len: 00000028

PARSING PAYLOAD type: 0b (ISAKMP_PAYLOAD_N)
next_type: 00 (ISAKMP_PAYLOAD_NONE)
length: 000c
n.doi: 00000001 (ISAKMP_DOI_IPSEC)
n.protocol: 01 (ISAKMP_IPSEC_PROTO_ISAKMP)
n.spi_length: 00
n.type: 000e (ISAKMP_N_NO_PROPOSAL_CHOSEN)
n.spi:
n.data:
DONE PARSING PAYLOAD type: 0b (ISAKMP_PAYLOAD_N)

PARSING PAYLOAD type: 00 (ISAKMP_PAYLOAD_NONE)
PARSE_OK
./vpnc: response was invalid [1]: (ISAKMP_N_INVALID_EXCHANGE_TYPE)(7)
*
Configuration
+++++++++*
IPSec gateway 172.31.114.227
IPSec ID tester.cas.com
IKE Authmode psk
IPSec secret mypresharedkey
NAT Traversal Mode natt
Xauth username tester
Xauth password tester
#Enable Triple DES
IKE DH Group dh2
debug 2
*
Openswan
+++++++++*
config setup
protostack=netkey
klipsdebug=all
plutodebug=all
nat_traversal=no
virtual_private=
oe=off
nhelpers=0
interfaces=%defaultroute

conn north-east
type=tunnel
right=%any
left=172.31.114.227
rightid=tester.cas.com
rightxauthclient=yes
leftxauthserver=yes
rightxauthusername=tester
aggrmode=yes
ike=3des-sha-modp1024
auto=add
authby=secret
pfs=no

*Secrets*
172.31.114.227 0.0.0.0: PSK "mypresharedkey"
@tester : XAUTH "tester"

Regards,
Saravanan.

saravanan.nagarajan87 at gmail

Mar 26, 2012, 7:55 AM

Post #2 of 3 (1053 views)
Permalink

./vpnc: response was invalid [1]: (ISAKMP_N_INVALID_EXCHANGE_TYPE)(7) [In reply to]

Hi Friends,
I m trying to establish a Remote VPN session with Openswan, but I m
getting the below error message. I desperately need your help to solve this
problem, since I have been working on this for a long time. It would be
great if you provide meany working configuration with Openswan.

*./vpnc: response was invalid [1]: (ISAKMP_N_INVALID_EXCHANGE_TYPE)(7)*
S4.4 AM_packet2
[2012-03-26 22:34:06]
BEGIN_PARSE
Recieved Packet Len: 40
i_cookie: ac3bcea1 62a33381
r_cookie: 826f6427 0dc4a7f3
payload: 0b (ISAKMP_PAYLOAD_N)
isakmp_version: 10
exchange_type: 05 (ISAKMP_EXCHANGE_INFORMATIONAL)
flags: 00
message_id: 00000000
len: 00000028

PARSING PAYLOAD type: 0b (ISAKMP_PAYLOAD_N)
next_type: 00 (ISAKMP_PAYLOAD_NONE)
length: 000c
n.doi: 00000001 (ISAKMP_DOI_IPSEC)
n.protocol: 01 (ISAKMP_IPSEC_PROTO_ISAKMP)
n.spi_length: 00
n.type: 000e (ISAKMP_N_NO_PROPOSAL_CHOSEN)
n.spi:
n.data:
DONE PARSING PAYLOAD type: 0b (ISAKMP_PAYLOAD_N)

PARSING PAYLOAD type: 00 (ISAKMP_PAYLOAD_NONE)
PARSE_OK
./vpnc: response was invalid [1]: (ISAKMP_N_INVALID_EXCHANGE_TYPE)(7)
*
Configuration
+++++++++*
IPSec gateway 172.31.114.227
IPSec ID tester.cas.com
IKE Authmode psk
IPSec secret mypresharedkey
NAT Traversal Mode natt
Xauth username tester
Xauth password tester
#Enable Triple DES
IKE DH Group dh2
debug 2
*
Openswan
+++++++++*
config setup
protostack=netkey
klipsdebug=all
plutodebug=all
nat_traversal=no
virtual_private=
oe=off
nhelpers=0
interfaces=%defaultroute

conn north-east
type=tunnel
right=%any
left=172.31.114.227
rightid=tester.cas.com
rightxauthclient=yes
leftxauthserver=yes
rightxauthusername=tester
aggrmode=yes
ike=3des-sha-modp1024
auto=add
authby=secret
pfs=no

*Secrets*
172.31.114.227 0.0.0.0: PSK "mypresharedkey"
@tester : XAUTH "tester"

Regards,
Saravanan.

saravanan.nagarajan87 at gmail

Mar 26, 2012, 8:27 PM

Post #3 of 3 (1062 views)
Permalink

Re: ./vpnc: response was invalid [1]: (ISAKMP_N_INVALID_EXCHANGE_TYPE)(7) [In reply to]

Hi Friends,
This seems to be a configuration mismatch problem with Openswan. Do you
have any working vpnc.conf with openswan? How to set phase1 and phase2
encryption & authentication in Vpnc ??

Regards,
Saravanan N.

On Mon, Mar 26, 2012 at 8:43 AM, SaRaVanAn
<saravanan.nagarajan87 [at] gmail>wrote:

> Hi Friends,
> I m trying to establish a Remote VPN session with Openswan, but I m
> getting the below error message. I desperately need your help to solve this
> problem, since I have been working on this for a long time. It would be
> great if you provide meany working configuration with Openswan.
>
> *./vpnc: response was invalid [1]: (ISAKMP_N_INVALID_EXCHANGE_TYPE)(7)*
> S4.4 AM_packet2
> [2012-03-26 22:34:06]
> BEGIN_PARSE
> Recieved Packet Len: 40
> i_cookie: ac3bcea1 62a33381
> r_cookie: 826f6427 0dc4a7f3
> payload: 0b (ISAKMP_PAYLOAD_N)
> isakmp_version: 10
> exchange_type: 05 (ISAKMP_EXCHANGE_
> INFORMATIONAL)
> flags: 00
> message_id: 00000000
> len: 00000028
>
> PARSING PAYLOAD type: 0b (ISAKMP_PAYLOAD_N)
> next_type: 00 (ISAKMP_PAYLOAD_NONE)
> length: 000c
> n.doi: 00000001 (ISAKMP_DOI_IPSEC)
> n.protocol: 01 (ISAKMP_IPSEC_PROTO_ISAKMP)
> n.spi_length: 00
> n.type: 000e (ISAKMP_N_NO_PROPOSAL_CHOSEN)
> n.spi:
> n.data:
> DONE PARSING PAYLOAD type: 0b (ISAKMP_PAYLOAD_N)
>
> PARSING PAYLOAD type: 00 (ISAKMP_PAYLOAD_NONE)
> PARSE_OK
> ./vpnc: response was invalid [1]: (ISAKMP_N_INVALID_EXCHANGE_TYPE)(7)
> *
> Configuration
> +++++++++*
> IPSec gateway 172.31.114.227
> IPSec ID tester.cas.com
> IKE Authmode psk
> IPSec secret mypresharedkey
> NAT Traversal Mode natt
> Xauth username tester
> Xauth password tester
> #Enable Triple DES
> IKE DH Group dh2
> debug 2
> *
> Openswan
> +++++++++*
> config setup
> protostack=netkey
> klipsdebug=all
> plutodebug=all
> nat_traversal=no
> virtual_private=
> oe=off
> nhelpers=0
> interfaces=%defaultroute
>
> conn north-east
> type=tunnel
> right=%any
> left=172.31.114.227
> rightid=tester.cas.com
> rightxauthclient=yes
> leftxauthserver=yes
> rightxauthusername=tester
> aggrmode=yes
> ike=3des-sha-modp1024
> auto=add
> authby=secret
> pfs=no
>
> *Secrets*
> 172.31.114.227 0.0.0.0: PSK "mypresharedkey"
> @tester : XAUTH "tester"
>
> Regards,
> Saravanan.
>

Index | Next | Previous | View Threaded

Interested in having your list archived? Contact Gossamer Threads