Sorry for typos.
Please find re-phrased sentance below:
In your example, there is error in construction of SA2, TSi or TSr payloads
in IKE_AUTH response.
Which also means either the implementation is not RFC compliant or system in
bad state at responder.
As explained below, in this case mandatory
OK. Let's try this again. Is this acceptable?
2.21. Error Handling
There are many kinds of errors that can occur during IKE processing.
If a request is received that is badly formatted, or unacceptable
for
reasons of policy (e.g., no matching cryptographic algorithms), the
resp
