LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Software (https://www.linuxquestions.org/questions/linux-software-2/)
-   -   vpnc and Cisco PIX (https://www.linuxquestions.org/questions/linux-software-2/vpnc-and-cisco-pix-585148/)

RomanC 09-16-2007 04:49 PM
vpnc and Cisco PIX
 
Hello,
I need to connect to a Cisco PIX box that uses a pre-shared key and Xauth login/password. The PIX box is also configured to run with 3des and sha. I have installed and configured vpnc 0.5.1 but I get a failure in phase 2.

Quote:
S7.3 QM_packet2 validate type


S7.4 process and skip lifetime notice 0


S7.5 QM_packet2 check reject offer



---!!!!!!!!! entering phase2_fatal !!!!!!!!!---


NAT-T mode, adding non-esp marker
NAT-T mode, adding non-esp marker
./vpnc: quick mode response rejected: (ISAKMP_N_INVALID_MESSAGE_ID)(9)
I would be grateful if anybody could point out what I am missing or what parameters should be set on the PIX to make this work. (luckily I know the admin and he can change the settings)

Roman

RomanC 09-18-2007 02:26 AM
Quote:
Originally Posted by RomanC (Post 2893993)
Hello,
I need to connect to a Cisco PIX box that uses a pre-shared key and Xauth login/password. The PIX box is also configured to run with 3des and sha. I have installed and configured vpnc 0.5.1 but I get a failure in phase 2.



I would be grateful if anybody could point out what I am missing or what parameters should be set on the PIX to make this work. (luckily I know the admin and he can change the settings)

Roman
Turns out I have to use l2tp over IPSEC.


All times are GMT -5. The time now is 12:37 AM.