Project

General

Profile

Actions
Copy link

Bug #7464

closed

IPSec VPN - roadwarrior connexion - vpnc client

Added by Aurélien BONANNI about 7 years ago. Updated about 7 years ago.

Status:
Rejected
Priority:
Normal
Assignee:
-
Category:
-
Target version:
-
Start date:
04/12/2017
Due date:
% Done:

0%

Estimated time:
Plus Target Version:
Release Notes:
Affected Version:
Affected Architecture:

Description

Hi,
Whe have upgraded our pfSense to the latest version (2.3.3). Since, we have problems with IPSec VPN.
We can't use anymore the vpnc client to connect.

We get the following error:

"vpnc: configuration response rejected: (ISAKMP_N_PAYLOAD_MALFORMED)(16)"

You fill find below the log information form the server :

Apr 12 09:44:39 pix-cm-01.cm50.org charon: 12[IKE] <con5|6> XAuth-SCRIPT succeeded for user 'teicee'.
Apr 12 09:44:39 pix-cm-01.cm50.org charon: 12[IKE] <con5|6> XAuth authentication of 'teicee' successful
Apr 12 09:44:39 pix-cm-01.cm50.org charon: 12[ENC] <con5|6> generating TRANSACTION request 1396587199 [ HASH CPS ]
Apr 12 09:44:39 pix-cm-01.cm50.org charon: 12[NET] <con5|6> sending packet: from X.X.X.X4500 to X.X.X.X5026 (76 bytes)
Apr 12 09:44:39 pix-cm-01.cm50.org charon: 12[NET] <con5|6> received packet: from X.X.X.X5026 to X.X.X.X4500 (76 bytes)
Apr 12 09:44:39 pix-cm-01.cm50.org charon: 12[ENC] <con5|6> parsed TRANSACTION response 1396587199 [ HASH CPA ]
Apr 12 09:44:39 pix-cm-01.cm50.org charon: 12[IKE] <con5|6> IKE_SA con56 established between X.X.X.X[TUN-VPN-02]...X.X.X.X[TUN-VPN-02]
Apr 12 09:44:39 pix-cm-01.cm50.org charon: 12[NET] <con5|6> received packet: from X.X.X.X5026 to X.X.X.X4500 (172 bytes)
Apr 12 09:44:39 pix-cm-01.cm50.org charon: 12[ENC] <con5|6> parsed TRANSACTION request 2809249047 [ HASH CPRQ ]
Apr 12 09:44:39 pix-cm-01.cm50.org charon: 12[IKE] <con5|6> peer requested virtual IP %any
Apr 12 09:44:39 pix-cm-01.cm50.org charon: 12[CFG] <con5|6> assigning new lease to 'teicee'
Apr 12 09:44:39 pix-cm-01.cm50.org charon: 12[IKE] <con5|6> assigning virtual IP 10.10.1.33 to peer 'teicee'
Apr 12 09:44:39 pix-cm-01.cm50.org charon: 12[ENC] <con5|6> generating TRANSACTION response 2809249047 [ HASH CPRP ]
Apr 12 09:44:39 pix-cm-01.cm50.org charon: 12[NET] <con5|6> sending packet: from X.X.X.X4500 to X.X.X.X5026 (140 bytes)
Apr 12 09:44:39 pix-cm-01.cm50.org charon: 07[NET] <con5|6> received packet: from X.X.X.X5026 to X.X.X.X4500 (76 bytes)
Apr 12 09:44:39 pix-cm-01.cm50.org charon: 07[ENC] <con5|6> parsed INFORMATIONAL_V1 request 2820007095 [ HASH N(PLD_MAL) ]
Apr 12 09:44:39 pix-cm-01.cm50.org charon: 07[IKE] <con5|6> received PAYLOAD_MALFORMED error notify
Apr 12 09:44:39 pix-cm-01.cm50.org charon: 12[NET] <con5|6> received packet: from X.X.X.X5026 to X.X.X.X4500 (92 bytes)
Apr 12 09:44:39 pix-cm-01.cm50.org charon: 12[ENC] <con5|6> parsed INFORMATIONAL_V1 request 45 [ HASH D ]
Apr 12 09:44:39 pix-cm-01.cm50.org charon: 12[IKE] <con5|6> received DELETE for IKE_SA con56
Apr 12 09:44:39 pix-cm-01.cm50.org charon: 12[IKE] <con5|6> deleting IKE_SA con56 between X.X.X.X[TUN-VPN-02]...X.X.X.X[TUN-VPN-02]
Apr 12 09:44:39 pix-cm-01.cm50.org charon: 12[CFG] <con5|6> lease 10.10.1.33 by 'teicee' went offline

Actions
Copy link
 #1

Updated by Jim Pingle about 7 years ago

  • Status changed from New to Rejected

Please post on the forum or mailing list for discussion and diagnosis before opening a bug report. Once a specific bug has been identified, then a ticket can be created.

Actions
Copy link

Also available in: Atom PDF