freeswan 1.91 x Cisco PIX

[HoP]

Pokousim se vytvorit klasickou tunel-tunel IPsec VPNku, ale
nejak se mi nedari. Stale to vraci "exchange type
 of ISAKMP Message has an unknown value: 6". Snazil jsem
se neco najit v linux-ipsec mailinglistu, ci pres google, ale
zadnou odpoved jsem nenasel, pouze podobnou otazku,
bohuzel bez odpovedi.

Proto bych se rad zeptal, nemate-li nekdo podobne zkusenosti:

/Honza

root[~] ipsec auto --up londyn
104 "londyn" #1: STATE_MAIN_I1: initiate
106 "londyn" #1: STATE_MAIN_I2: from STATE_MAIN_I1; sent MI2, expecting MR2
003 "londyn" #1: ignoring Vendor ID payload
108 "londyn" #1: STATE_MAIN_I3: from STATE_MAIN_I2; sent MI3, expecting MR3
004 "londyn" #1: STATE_MAIN_I4: ISAKMP SA established
112 "londyn" #2: STATE_QUICK_I1: initiate
010 "londyn" #2: STATE_QUICK_I1: retransmission; will wait 20s for response
010 "londyn" #2: STATE_QUICK_I1: retransmission; will wait 40s for response
[ ...atd ]


root[~] ipsec auto --status
000 interface ipsec0/eth2 1.1.1.2
000
000 "londyn": 192.168.1.0/24===1.1.1.2---1.1.1.1...
000 "londyn": ...2.2.2.2===192.0.0.0/24
000 "londyn":   ike_life: 3600s; ipsec_life: 28800s; rekey_margin: 540s; rekey_fuzz: 100%; keyingtries: 0
000 "londyn":   policy: PSK+ENCRYPT+TUNNEL+PFS; interface: eth2; unrouted
000 "londyn":   newest ISAKMP SA: #39; newest IPsec SA: #0; eroute owner: #0
000
000 #41: "londyn" STATE_QUICK_I1 (sent QI1, expecting QR1); EVENT_RETRANSMIT in
16s
000 #39: "londyn" STATE_MAIN_I4 (ISAKMP SA established); EVENT_SA_REPLACE in 217
s; newest ISAKMP
000 #26: "londyn" STATE_MAIN_I4 (ISAKMP SA established); EVENT_SA_EXPIRE in 213s
000 #38: "londyn" STATE_MAIN_I4 (ISAKMP SA established); EVENT_SA_EXPIRE in 855s
000 #33: "londyn" STATE_MAIN_I4 (ISAKMP SA established); EVENT_SA_EXPIRE in 571s

/var/log/secure:

Mar  4 14:35:05 drac Pluto[5802]: packet from 2.2.2.2:500: exchange type
 of ISAKMP Message has an unknown value: 6
Mar  4 14:35:05 drac Pluto[5802]: | next event EVENT_RETRANSMIT in 11 seconds
 for #2
Mar  4 14:35:16 drac Pluto[5802]: |