On two OpenBSD 4.1-stable systems, I get: isakmpd[31988]: message_recv: invalid cookie(s) 378fd1c537d22b16 38bf2f6699147070 isakmpd[31988]: dropped message from 128.164.144.144 port 500 due to notification type INVALID_COOKIE
isakmpd is running with the -K option, and ipsec.conf is very simple, ike esp from 128.164.159.159 to 128.164.144.144 quick enc aesctr IPsec is working. I'm unsure why occasionally the cookie becomes invalid and what it is I can do about it. What is the problem?
