我在我的 Linux Red Hat 机器上安装了 vpnc 版本 6.3
大多数情况下 vpnc 运行良好(通过 vpnc 连接到网关客户)
但针对某些特定客户(Cisco网关),在我激活vpnc后立即收到以下消息:
vpnc: quick mode response rejected: (ISAKMP_N_INVALID_PAYLOAD_TYPE)(1)
在这种情况下 Vpnc 无法连接
请指教这里有什么问题?,
[root@TEST-LINUX-MACHINE /var/tmp]# vpnc
Enter password for [email protected]:
Connect Banner:
| Remote access to UGG company resources is restricted to AUTHORIZED USERS!
|
| Company resources may only be used for the purpose of performing work-related duties.
| The user is responsible for protecting the confidentiality and integrity of the company resources.
| Violation may cause disciplinary action.
| By clicking on "Continue" the user agrees with the rules above.
|
RTNETLINK answers: File exists
**vpnc: quick mode response rejected: (ISAKMP_N_INVALID_PAYLOAD_TYPE)(1)**
this means the concentrator did not like what we had to offer.
Possible reasons are:
* concentrator configured to require a firewall
this locks out even Cisco clients on any platform expect windows
which is an obvious security improvment. There is no workaround (yet).
* concentrator configured to require IP compression
this is not yet supported by vpnc.
Note: the Cisco Concentrator Documentation recommends against using
compression, expect on low-bandwith (read: ISDN) links, because it
uses much CPU-resources on the concentrator
我也尝试做以下事情
Add the line "NAT Traversal Mode cisco-udp" in /etc/vpnc.conf
或者
Add the line "Local Port 10000" in /etc/vpnc.conf
但他们没有帮助,我仍然收到错误消息(无法通过 vpnc 连接)
请指教问题出在哪里?