on 7.011 Site i got following erreors:
2007:11:20-01:01:00 (none) pluto[8155]: "S_REF_JBGKyMnTGL_0" #25: enabling possible NAT-traversal with method 3
2007:11:20-01:01:00 (none) pluto[8155]: "S_REF_JBGKyMnTGL_0" #25: NAT-Traversal: Result using RFC 3947: no NAT detected
2007:11:20-01:01:00 (none) pluto[8155]: "S_REF_JBGKyMnTGL_0" #25: next payload type of ISAKMP Hash Payload has an unknown value: 218
2007:11:20-01:01:00 (none) pluto[8155]: "S_REF_JBGKyMnTGL_0" #25: malformed payload in packet
2007:11:20-01:01:10 (none) pluto[8155]: "S_REF_JBGKyMnTGL_0" #25: discarding duplicate packet; already STATE_MAIN_I3
2007:11:20-01:01:10 (none) pluto[8155]: "S_REF_JBGKyMnTGL_0" #25: next payload type of ISAKMP Hash Payload has an unknown value: 43
2007:11:20-01:01:10 (none) pluto[8155]: "S_REF_JBGKyMnTGL_0" #25: malformed payload in packet
2007:11:20-01:01:30 (none) pluto[8155]: "S_REF_JBGKyMnTGL_0" #25: discarding duplicate packet; already STATE_MAIN_I3
2007:11:20-01:01:30 (none) pluto[8155]: "S_REF_JBGKyMnTGL_0" #25: next payload type of ISAKMP Hash Payload has an unknown value: 228
2007:11:20-01:01:30 (none) pluto[8155]: "S_REF_JBGKyMnTGL_0" #25: malformed payload in packet
2007:11:20-01:02:10 (none) pluto[8155]: "S_REF_JBGKyMnTGL_0" #25: max number of retransmissions (2) reached STATE_MAIN_I3. Possible authentication failure: no acceptable response to our first encrypted message
2007:11:20-01:02:10 (none) pluto[8155]: "S_REF_JBGKyMnTGL_0" #25: starting keying attempt 26 of an unlimited number
2007:11:20-01:02:10 (none) pluto[8155]: "S_REF_JBGKyMnTGL_0" #26: initiating Main Mode to replace #25
2007:11:20-01:02:10 (none) pluto[8155]: "S_REF_JBGKyMnTGL_0" #26: ignoring Vendor ID payload [strongSwan 2.7.3]
2007:11:20-01:02:10 (none) pluto[8155]: "S_REF_JBGKyMnTGL_0" #26: ignoring Vendor ID payload [XAUTH]
2007:11:20-01:02:10 (none) pluto[8155]: "S_REF_JBGKyMnTGL_0" #26: received Vendor ID payload [Dead Peer Detection]
2007:11:20-01:02:10 (none) pluto[8155]: "S_REF_JBGKyMnTGL_0" #26: received Vendor ID payload [RFC 3947]
2007:11:20-01:02:10 (none) pluto[8155]: "S_REF_JBGKyMnTGL_0" #26: enabling possible NAT-traversal with method 3
2007:11:20-01:02:10 (none) pluto[8155]: "S_REF_JBGKyMnTGL_0" #26: NAT-Traversal: Result using RFC 3947: no NAT detected
2007:11:20-01:02:10 (none) pluto[8155]: "S_REF_JBGKyMnTGL_0" #26: next payload type of ISAKMP Hash Payload has an unknown value: 170
2007:11:20-01:02:10 (none) pluto[8155]: "S_REF_JBGKyMnTGL_0" #26: malformed payload in packet
2007:11:20-01:02:20 (none) pluto[8155]: "S_REF_JBGKyMnTGL_0" #26: next payload type of ISAKMP Hash Payload has an unknown value: 205
2007:11:20-01:02:20 (none) pluto[8155]: "S_REF_JBGKyMnTGL_0" #26: malformed payload in packet
2007:11:20-01:02:20 (none) pluto[8155]: "S_REF_JBGKyMnTGL_0" #26: discarding duplicate packet; already STATE_MAIN_I3
on 7.080 site i got
2007:11:20-01:06:51 (none) pluto[3727]: "S_REF_jTDmmaLAVe_0"[17] 84.44.223.91 #2160: responding to Main Mode from unknown peer 84.44.223.91
2007:11:20-01:06:51 (none) pluto[3727]: "S_REF_jTDmmaLAVe_0"[17] 84.44.223.91 #2160: multiple ipsec.secrets entries with distinct secrets match endpoints: first secret used
2007:11:20-01:06:51 (none) pluto[3727]: "S_REF_jTDmmaLAVe_0"[17] 84.44.223.91 #2159: max number of retransmissions (2) reached STATE_MAIN_R2
2007:11:20-01:06:51 (none) pluto[3727]: "S_REF_jTDmmaLAVe_0"[17] 84.44.223.91 #2160: NAT-Traversal: Result using RFC 3947: no NAT detected
2007:11:20-01:06:51 (none) pluto[3727]: "S_REF_jTDmmaLAVe_0"[17] 84.44.223.91 #2160: multiple ipsec.secrets entries with distinct secrets match endpoints: first secret used
2007:11:20-01:06:51 (none) pluto[3727]: "S_REF_jTDmmaLAVe_0"[17] 84.44.223.91 #2160: next payload type of ISAKMP Identification Payload has an unknown value: 253
2007:11:20-01:06:51 (none) pluto[3727]: "S_REF_jTDmmaLAVe_0"[17] 84.44.223.91 #2160: probable authentication failure (mismatch of preshared secrets?): malformed payload in packet
2007:11:20-01:06:51 (none) pluto[3727]: "S_REF_jTDmmaLAVe_0"[17] 84.44.223.91 #2160: sending encrypted notification PAYLOAD_MALFORMED to 84.44.223.91:500
2007:11:20-01:07:01 (none) pluto[3727]: "S_REF_jTDmmaLAVe_0"[17] 84.44.223.91 #2160: next payload type of ISAKMP Identification Payload has an unknown value: 253
2007:11:20-01:07:01 (none) pluto[3727]: "S_REF_jTDmmaLAVe_0"[17] 84.44.223.91 #2160: probable authentication failure (mismatch of preshared secrets?): malformed payload in packet
2007:11:20-01:07:01 (none) pluto[3727]: "S_REF_jTDmmaLAVe_0"[17] 84.44.223.91 #2160: sending encrypted notification PAYLOAD_MALFORMED to 84.44.223.91:500
Site2Site VPNs against other 7.011 sites createt BEFORE upgrade to 7.075 work nice.
I testet this from asg220 with 7.080 against one asg110 with 7.011 and another asl 7.011
Gregor Kemter
