One of the field values was out of range or reserved field was non-zero

[Soundtrack9407]

Hello! Thanks for maintaining xl2tpd.

When I try to connect a new l2tp server(could be a H3C Server), I found a rare connecting issue as follow:

root@Client ~ # xl2tpd -c /etc/xl2tpd/xl2tpd.conf -s /etc/xl2tpd/xl2tp-secrets -C /var/run/xl2tpd/xl2tp-control -D
xl2tpd[6069]: Not looking for kernel SAref support.
xl2tpd[6069]: Using l2tp kernel support.
xl2tpd[6069]: xl2tpd version xl2tpd-1.3.13 started on M2M PID:6069
xl2tpd[6069]: Written by Mark Spencer, Copyright (C) 1998, Adtran, Inc.
xl2tpd[6069]: Forked by Scott Balmos and David Stipp, (C) 2001
xl2tpd[6069]: Inherited by Jeff McAdams, (C) 2002
xl2tpd[6069]: Forked again by Xelerance (www.xelerance.com) (C) 2006-2016
xl2tpd[6069]: Listening on IP address 0.0.0.0, port 1701
xl2tpd[6069]: get_call: allocating new tunnel for host 10.23.64.1, port 1701.
xl2tpd[6069]: Connecting to host 10.23.64.1, port 1701
xl2tpd[6069]: control_finish: message type is (null)(0).  Tunnel is 0, call is 0.
packet dump:
HEX: { C8 02 00 64 00 00 00 00 00 00 00 00 80 08 00 00 00 00 00 01 80 08 00 00 00 02 01 00 80 0A 00 00 00 03 00 00 00 03 80 0A 00 00 00 04 00 00 00 00 00 08 00 00 00 06 06 90 80 09 00 00 00 07 4D 32 4D 00 13 00 00 00 08 78 65 6C 65 72 61 6E 63 65 2E 63 6F 6D 80 08 00 00 00 09 E7 F6 80 08 00 00 00 0A 00 08 }
ASCII: {    d                                                          M2M      xelerance.com                }
xl2tpd[6069]: control_finish: sending SCCRQ
xl2tpd[6069]: network_thread: recv packet from 10.23.64.1, size = 100, tunnel = 59382, call = 0 ref=0 refhim=0
packet dump:
HEX: { C8 02 00 64 E7 F6 00 00 00 00 00 01 80 08 00 00 00 00 00 02 80 08 00 00 00 02 01 00 80 0E 00 00 00 07 68 6D 79 68 5F 6C 6E 73 80 0A 00 00 00 03 00 00 00 00 80 08 00 00 00 09 D8 E4 80 0A 00 00 00 04 00 00 00 03 80 08 00 00 00 0A 00 08 80 16 00 00 00 0B 76 F9 72 97 43 92 F9 9E 1A CB 5E 03 17 F1 7E D3 }
ASCII: {    d                              hmyh_lns                                          v r C     ^   ~ }
xl2tpd[6069]: message_type_avp: message type 2 (Start-Control-Connection-Reply)
xl2tpd[6069]: protocol_version_avp: peer is using version 1, revision 0.
xl2tpd[6069]: hostname_avp: peer reports hostname 'l2tp_lns'
xl2tpd[6069]: framing_caps_avp: supported peer frames:
xl2tpd[6069]: assigned_tunnel_avp: using peer's tunnel 55524
xl2tpd[6069]: bearer_caps_avp: supported peer bearers: analog digital
xl2tpd[6069]: receive_window_size_avp: peer wants RWS of 8.  Will use flow control.
xl2tpd[6069]: challenge_avp: challenge avp found
xl2tpd[6069]: control_finish: message type is Start-Control-Connection-Reply(2).  Tunnel is 55524, call is 0.
packet dump:
HEX: { C8 02 00 2A D8 E4 00 00 00 01 00 01 80 08 00 00 00 00 00 03 80 16 00 00 00 0D A2 AB 6F 44 6B 72 8B 84 43 53 D7 69 78 17 73 FD }
ASCII: {    *                        oDkr  CS ix s }
xl2tpd[6069]: control_finish: sending SCCCN
xl2tpd[6069]: Connection established to 10.23.64.1, 1701.  Local: 59382, Remote: 55524 (ref=0/0).
xl2tpd[6069]: Calling on tunnel 59382
xl2tpd[6069]: control_finish: message type is (null)(0).  Tunnel is 55524, call is 0.
packet dump:
HEX: { C8 02 00 30 D8 E4 00 00 00 02 00 01 80 08 00 00 00 00 00 0A 80 08 00 00 00 0E 50 38 80 0A 00 00 00 0F 00 00 00 01 80 0A 00 00 00 12 00 00 00 00 }
ASCII: {    0                      P8                    }
xl2tpd[6069]: control_finish: sending ICRQ
xl2tpd[6069]: network_thread: recv packet from 10.23.64.1, size = 109, tunnel = 59382, call = 0 ref=0 refhim=0
packet dump:
HEX: { C8 02 00 6D E7 F6 00 00 00 01 00 02 80 08 00 00 00 00 00 04 80 08 00 00 00 09 D8 E4 80 51 00 00 00 01 00 02 00 03 4F 6E 65 20 6F 66 20 74 68 65 20 66 69 65 6C 64 20 76 61 6C 75 65 73 20 77 61 73 20 6F 75 74 20 6F 66 20 72 61 6E 67 65 20 6F 72 20 72 65 73 65 72 76 65 64 20 66 69 65 6C 64 20 77 61 73 20 6E 6F 6E 2D 7A 65 72 6F }
ASCII: {    m                         Q        One of the field values was out of range or reserved field was non-zero}
xl2tpd[6069]: message_type_avp: message type 4 (Stop-Control-Connection-Notification)
xl2tpd[6069]: assigned_tunnel_avp: using peer's tunnel 55524
xl2tpd[6069]: result_code_avp: peer closing for reason 2 (General error--Error Code indicates the problem), error = 3 (One of the field values was out of range or reserved field was non-zero)
xl2tpd[6069]: control_finish: message type is Stop-Control-Connection-Notification(4).  Tunnel is 55524, call is 0.
xl2tpd[6069]: control_finish: Connection closed to 10.23.64.1, port 1701 (One of the field values was out of range or reserved field was non-zero), Local: 59382, Remote: 55524
xl2tpd[6069]: build_fdset: closing down tunnel 59382
xl2tpd[6069]: network_thread: select returned error 9 (Bad file descriptor)

My Environment:

• L2TP Over IPSec
• OS: OpenWrt 18.06
• Kernel: Linux Client 4.9.138 #0 Wed Dec 12 09:39:06 2018 mips GNU/Linux
• IPSec: strongSwan U5.6.3 (IPSec has been established and works well)

  Security Associations (1 up, 0 connecting):
  psk[5]: ESTABLISHED 10 minutes ago, 10.23.64.3[***]...10.23.64.1[***]
  psk{4}:  INSTALLED, TUNNEL, reqid 1, ESP SPIs: ca9c46b3_i 6981bfd9_o
  psk{4}:   10.23.64.3/32[udp] === 10.23.64.1/32[udp/l2f]

• xl2tpd Conf:

  
  [global]
  port = 1701
  auth file = /etc/xl2tpd/xl2tp-secrets
  access control = no
  debug tunnel = yes
  debug packet = yes
  debug state = yes
  debug network = yes
  debug avp = yes

[lac l2tp1] lns = 10.23.64.1 name = l2tp1 ppp debug = yes pppoptfile = /var/l2tp/options.l2tp1

- Enable L2TP Tunnel Secret

Secrets for authenticating l2tp tunnels

us them secret

• • 12345678

    
    According to  [RFC2661](https://tools.ietf.org/html/rfc2661) and [L2TP Parameters](https://www.iana.org/assignments/l2tp-parameters/l2tp-parameters.xml), 
    it maybe something wrong happened when xl2tpd try to analysis ICRP info.

How could I do to fix this error?

Thank you

[Soundtrack9407]

I know what's wrong, the L2TP tunnel secret offered by the administrator is not right. And I change the secret for L2TP tunnel, everything is right.

Sorry

[shussain]

No problem. Closing ticket.