Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
arsathparves
Contributor
Jump to solution

Quick mode Received Notification from Peer: invalid id information

Hi all

We are trying to setup a site to site VPN connection with a Sophos firewall but we are receiving  " Quick mode Received Notification from Peer: invalid id information" error on the logs so after re-checking the configurations on both the devices we verified the configurations are the same on both the sides. So any suggestion how to fix this issue ? 

And we received the same error message when we tried to setup a Site-to-Site VPN with Opensense firewall as well.

#1530 #Quantum_Sparks

0 Kudos
1 Solution

Accepted Solutions
6 Replies
Vincent_Bacher
Advisor
Advisor

Hi,

is there a NAT policy which maybe e.g. hides the source ip of the outgoing packet behind gateways external address?
Then the packet does not match the Phase 2 config and is dropped and a rule above this rule would be required to disable nat between both devices communicating thru the tunnel

cheers

and now to something completely different - CCVS, CCAS, CCTE, CCCS, CCSM elite
0 Kudos
arsathparves
Contributor

NAT is disabled on both the sites still the issue is persisting  

0 Kudos
Daniel_Kavan
Advisor
Advisor

RE: IKEv2

Does Check Point require Phase2 quick mode/Proxy-ID/traffic selectors when connecting to a 3rd party vendor (Palo Alto 7050 10.1.8 in my case)?

 

 

0 Kudos
arsathparves
Contributor

No idea but on the new release this is mentioned maybe it will reduce the problems.

  • Remote Access VPN Strongswan (VPN 3rd party)

Daniel_Kavan
Advisor
Advisor
G_W_Albrecht
Legend Legend
Legend
0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events