Bug #7464
closedIPSec VPN - roadwarrior connexion - vpnc client
0%
Description
Hi,
Whe have upgraded our pfSense to the latest version (2.3.3). Since, we have problems with IPSec VPN.
We can't use anymore the vpnc client to connect.
We get the following error:
"vpnc: configuration response rejected: (ISAKMP_N_PAYLOAD_MALFORMED)(16)"
You fill find below the log information form the server :
Apr 12 09:44:39 pix-cm-01.cm50.org charon: 12[IKE] <con5|6> XAuth-SCRIPT succeeded for user 'teicee'.
Apr 12 09:44:39 pix-cm-01.cm50.org charon: 12[IKE] <con5|6> XAuth authentication of 'teicee' successful
Apr 12 09:44:39 pix-cm-01.cm50.org charon: 12[ENC] <con5|6> generating TRANSACTION request 1396587199 [ HASH CPS ]
Apr 12 09:44:39 pix-cm-01.cm50.org charon: 12[NET] <con5|6> sending packet: from X.X.X.X4500 to X.X.X.X5026 (76 bytes)
Apr 12 09:44:39 pix-cm-01.cm50.org charon: 12[NET] <con5|6> received packet: from X.X.X.X5026 to X.X.X.X4500 (76 bytes)
Apr 12 09:44:39 pix-cm-01.cm50.org charon: 12[ENC] <con5|6> parsed TRANSACTION response 1396587199 [ HASH CPA ]
Apr 12 09:44:39 pix-cm-01.cm50.org charon: 12[IKE] <con5|6> IKE_SA con56 established between X.X.X.X[TUN-VPN-02]...X.X.X.X[TUN-VPN-02]
Apr 12 09:44:39 pix-cm-01.cm50.org charon: 12[NET] <con5|6> received packet: from X.X.X.X5026 to X.X.X.X4500 (172 bytes)
Apr 12 09:44:39 pix-cm-01.cm50.org charon: 12[ENC] <con5|6> parsed TRANSACTION request 2809249047 [ HASH CPRQ ]
Apr 12 09:44:39 pix-cm-01.cm50.org charon: 12[IKE] <con5|6> peer requested virtual IP %any
Apr 12 09:44:39 pix-cm-01.cm50.org charon: 12[CFG] <con5|6> assigning new lease to 'teicee'
Apr 12 09:44:39 pix-cm-01.cm50.org charon: 12[IKE] <con5|6> assigning virtual IP 10.10.1.33 to peer 'teicee'
Apr 12 09:44:39 pix-cm-01.cm50.org charon: 12[ENC] <con5|6> generating TRANSACTION response 2809249047 [ HASH CPRP ]
Apr 12 09:44:39 pix-cm-01.cm50.org charon: 12[NET] <con5|6> sending packet: from X.X.X.X4500 to X.X.X.X5026 (140 bytes)
Apr 12 09:44:39 pix-cm-01.cm50.org charon: 07[NET] <con5|6> received packet: from X.X.X.X5026 to X.X.X.X4500 (76 bytes)
Apr 12 09:44:39 pix-cm-01.cm50.org charon: 07[ENC] <con5|6> parsed INFORMATIONAL_V1 request 2820007095 [ HASH N(PLD_MAL) ]
Apr 12 09:44:39 pix-cm-01.cm50.org charon: 07[IKE] <con5|6> received PAYLOAD_MALFORMED error notify
Apr 12 09:44:39 pix-cm-01.cm50.org charon: 12[NET] <con5|6> received packet: from X.X.X.X5026 to X.X.X.X4500 (92 bytes)
Apr 12 09:44:39 pix-cm-01.cm50.org charon: 12[ENC] <con5|6> parsed INFORMATIONAL_V1 request 45 [ HASH D ]
Apr 12 09:44:39 pix-cm-01.cm50.org charon: 12[IKE] <con5|6> received DELETE for IKE_SA con56
Apr 12 09:44:39 pix-cm-01.cm50.org charon: 12[IKE] <con5|6> deleting IKE_SA con56 between X.X.X.X[TUN-VPN-02]...X.X.X.X[TUN-VPN-02]
Apr 12 09:44:39 pix-cm-01.cm50.org charon: 12[CFG] <con5|6> lease 10.10.1.33 by 'teicee' went offline