dear guru,
Just wondering if you have tried to build site-to-site from my concentrator 3000 with CP fw-1 NGR55.
We have everything set up as per instructed
Any ideas will be appreciated.
Thx Nick
Hello Nick,
I found this, maybe it gives you a hint:
Peer Address X.X.X.X Not Found This error message normally appears with the corresponding VPN 3000 Concentrator error message Message: No proposal chosen(14). This is a result of the connections being host-to-host. The router configuration has the IPsec proposals in an order where the proposal chosen for the router matches the access list, but not the peer. The access list has a larger network that includes the host that intersects traffic. In order to correct this, make the router proposal for this concentrator-to-router connection first in line. This allows it to match the specific host first.
20:44:44: IPSEC(validate_proposal_request): proposal part #1, (key eng. msg.) dest= 194.70.240.150, src= 198.174.236.6, dest_proxy= 10.0.0.76/255.255.255.255/0/0 (type=1), src_proxy= 198.174.238.203/255.255.255.255/0/0 (type=1), protocol= ESP, transform= esp-3des esp-md5-hmac , lifedur= 0s and 0kb, spi= 0x0(0), conn_id= 0, keysize= 0, flags= 0x4 20:44:44: IPSEC(validate_transform_proposal): peer address 198.174.236.6 not foundRegards,
HCabling-Design.com Forums website is not affiliated with any of the manufacturers or service providers discussed here. All logos and trade names are the property of their respective owners.