Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
SkipperNavy
Contributor

IPSEC VPN

Hello,

I just configured an ipsec vpn with a 3rd party Firewall.

Ike phase 1 is OK.

in logs, i see dropped paquets between the Mgmt interface of my local GW and the remote public ip of 3rd party.

 

Can Someone advice me on this case.

8 Replies
PhoneBoy
Admin
Admin

SkipperNavy
Contributor

Thank you,

I tried all of this , but i can't figure out the problem.

Is it normal  to see drops between the Mgmt ip of the gateway and the peer ip?

0 Kudos
PhoneBoy
Admin
Admin

You haven't described your precise configuration, which makes it difficult to know if you've configured something incorrectly.
What do you have Link Selection configured to use in this case?

Benedikt_Weissl
Advisor

Phase 2 issues might be caused by different encryption/hash algorithms on one side, but since phase 1 is working I think the encryption domains are wrong. Can you post your settings and an excerpt from the vpn log?

Vincent_Bacher
Advisor

"dropped paquets between the Mgmt interface of my local GW"

Mgmt Interface?
Link selection config issue?
Routing?
🤔
Drop reason from log would be helpful. 😏

and now to something completely different
SkipperNavy
Contributor

i have not modified the Link selection.

I am facing problems with my cluster, it is not stable.

Thank you to all. 

 

0 Kudos
PhoneBoy
Admin
Admin

There can be many reasons a VPN doesn't work.
We would need to know a LOT more about the underlying configuration and the precise errors you're seeing.
Output of some of the debugs might be helpful as well.

If you're not comfortable sharing on a public community (which I totally understand), I highly recommend opening a case with our TAC. 

Vincent_Bacher
Advisor

All Screenshots and log entries or debug outputs are easy to anonymize 🙂

and now to something completely different