[Ipsec-tools-users] Failed to pre-process packet.

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 454-5900

Hi list,

I need to create a tunnel between a debian with racoon 0.6.6-3.1etch1  
and a Sidewinder firewall.

Everything is set up, but it seems that phase 2 is failing with:

On the debian box:
2008-06-04 09:33:51: DEBUG: begin.
2008-06-04 09:33:51: DEBUG: seen nptype=8(hash)
2008-06-04 09:33:51: DEBUG: invalid length of payload
2008-06-04 09:33:51: ERROR: failed to pre-process packet.

On the Sidewinder:
information: [detailed info]
   [error]
     QUICK_MODE exchange processing failed
   [error]
     invalid request for QUICK_MODE exchange, no IKE SA exists which  
matches request

Any hints is greatly appreciated.

Debian configuration:
racoon.conf
path pre_shared_key "/etc/racoon/psk.txt";

listen
{
         isakmp 11.22.33.44 ;
}

remote anonymous
{
         exchange_mode main ;
         peers_identifier address 99.99.99.99 ;
         my_identifier address 11.22.33.44 ;
         lifetime time 24 hour ;
         proposal {
                 encryption_algorithm 3des ;
                 hash_algorithm sha1 ;
                 authentication_method pre_shared_key ;
                 dh_group 2 ;
         }
}

sainfo anonymous
{
         lifetime time 3600 min ;
         encryption_algorithm 3des ;
         authentication_algorithm hmac_sha1 ;
         compression_algorithm deflate ;
}