os3.15 message: length in isakmp header too big
Posted: Mon Nov 03, 2008 12:49 pm
Hey,
anyone managed to setup Mikrotik as vpn gateway for latest iphones using l2tp/ipsec?
I tried a setup and ipsec debug messages produces this output (nat-t enabled btw):
02:42:56 ipsec,ike IPsec-SA established: ESP/Transport xxx.xxx.xxx.xx[4500]->yy.yy.yyy.yy[4500] spi=44661093(0x2a97965)
02:42:56 ipsec,ike IPsec-SA established: ESP/Transport yy.yy.yyy.yy[4500]->xxx.xxx.xxx.xx[4500] spi=166580145(0x9edcfb1)
02:42:56 ipsec,ike the length in the isakmp header is too big.
02:42:57 ipsec,ike the length in the isakmp header is too big.
02:42:57 ipsec,ike the length in the isakmp header is too big.
02:42:57 ipsec,ike the length in the isakmp header is too big.
This does not sound too bad, but connection does not work (no l2tp connection shows up).
Does anyone have some ideas or comments about this?
Thanks,
Amode
anyone managed to setup Mikrotik as vpn gateway for latest iphones using l2tp/ipsec?
I tried a setup and ipsec debug messages produces this output (nat-t enabled btw):
02:42:56 ipsec,ike IPsec-SA established: ESP/Transport xxx.xxx.xxx.xx[4500]->yy.yy.yyy.yy[4500] spi=44661093(0x2a97965)
02:42:56 ipsec,ike IPsec-SA established: ESP/Transport yy.yy.yyy.yy[4500]->xxx.xxx.xxx.xx[4500] spi=166580145(0x9edcfb1)
02:42:56 ipsec,ike the length in the isakmp header is too big.
02:42:57 ipsec,ike the length in the isakmp header is too big.
02:42:57 ipsec,ike the length in the isakmp header is too big.
02:42:57 ipsec,ike the length in the isakmp header is too big.
This does not sound too bad, but connection does not work (no l2tp connection shows up).
Does anyone have some ideas or comments about this?
Thanks,
Amode