Openswan and pix 515E

Dear all,

I have tried to set-up an ipsec tunnel between an openswan 1.0.2 and a
Cisco PIX 515.

If anyone knows something about this please tell me.

I have a big problem now because I cannot even set-up the tunnel.
PIX configuration has not been changed and my old setup is working.

The phase 1 of the VPN is ok (ISAKMP SA established) but in my
/var/log/messages I found strange things...

Here is the debug:
Sep 9 16:31:38 linux pluto[21125]: "myconn" #1: Peer ID is ID_FQDN:
'xxx.xxx.xxx.xxx'
Sep 9 16:31:38 linux pluto[21125]: "myconn" #1: issuer crl not found
Sep 9 16:31:38 linux pluto[21125]: "myconn" #1: ISAKMP SA established
Sep 9 16:31:38 linux pluto[21125]: "myconn" #2: initiating Quick Mode
PSK+ENCRYPT+TUNNEL+UP {using isakmp#1}
Sep 9 16:31:38 linux pluto[21125]: "myconn" #1: ignoring informational
payload, type NO_PROPOSAL_CHOSEN
Sep 9 16:31:38 linux pluto[21125]: "myconn" #1: ignoring informational
payload, type IPSEC_INITIAL_CONTACT
Sep 9 16:31:48 linux pluto[21125]: packet from x.x.x.x:500: not enough
room in input packet for ISAKMP Message (remain=0, sd->size=28)
Sep 9 16:31:48 linux pluto[21125]: packet from x.x.x.x:500: sending
notification PAYLOAD_MALFORMED to x.x.x.x:500


What means this message "not enough room in input packet for ISAKMP
Message" ?

If anyone has an idea..
Thanks in advance

In article <MPG.1e39424dad8d4917989680@localhost>,
(E-Mail Removed) says...

I've found the pb...
The network/mask defined in the ipsec.conf differed from the
network/mask in the pix acl

Strange behavior of pluto saying "packet from x.x.x.x:500: not enough
room in input packet for ISAKMP Message (remain=0, sd->size=28)"

Maybe this solution helps.
Best regards.