Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 3 replies
  • Subscribers 27 subscribers
  • Views 5591 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Problems with getting site to site VPN connection to azure gateway

AJ Wilkinson

Hi im trying to set up ste to site VPN connection to azure Gateway im problem is that on azure side it shows thats its connected and with the same on sophos XG side its says its connected but i can't ping /connect to any thing on the azure V-Net, when i did a capture on the azure gateway,  But I'm seeing unknown exchange Type IKE traffic from Sophos XG.  I can see the tunnel is configured, but on premise is sending changes after the tunnel is up, which is not supported.  Thus the tunnel is being teared down again.  this is some of the log from gateway capture

 

9622       3:29:10 PM 1/17/2017    56.5812218          (872)     51.140.52.235     109.146.184.44  IKE          IKE:version 1.0, Identity protection (Main Mode), Payloads = HDR, SA, VID, Flags = ..., Length = 372

9628       3:29:11 PM 1/17/2017    57.5881248          (872)     51.140.52.235     109.146.184.44  IKE          IKE:version 1.0, Identity protection (Main Mode), Payloads = HDR, SA, VID, Flags = ..., Length = 372

10463    3:29:14 PM 1/17/2017    60.6024229          (872)     51.140.52.235     109.146.184.44  IKE          IKE:version 1.0, Identity protection (Main Mode), Payloads = HDR, SA, VID, Flags = ..., Length = 372

10623    3:29:17 PM 1/17/2017    64.1382533          (0)         109.146.184.44  51.140.52.235     IKE          IKE:version 1.0, Identity protection (Main Mode), Payloads = HDR, SA, VID, Flags = ..., Length = 204

10636    3:29:17 PM 1/17/2017    64.1390210          (872)     51.140.52.235     109.146.184.44  IKE          IKE:version 1.0, Identity protection (Main Mode), Payloads = HDR, SA, VID, Flags = ..., Length = 212

10638    3:29:17 PM 1/17/2017    64.1612455          (0)         109.146.184.44  51.140.52.235     IKE          IKE:version 1.0, Identity protection (Main Mode), Payloads = HDR, Ni, KE, NAT-D, Flags = ..., Length = 228

10648    3:29:17 PM 1/17/2017    64.1646500          (872)     51.140.52.235     109.146.184.44  IKE          IKE:version 1.0, Identity protection (Main Mode), Payloads = HDR, Nr, KE, NAT-D, Flags = ..., Length = 260

10689    3:29:17 PM 1/17/2017    64.1852792          (0)         109.146.184.44  51.140.52.235     IKE          IKE:version 1.0, Identity protection (Main Mode), Payloads = HDR*, IDr, Flags = ..E, Length = 76

10700    3:29:17 PM 1/17/2017    64.1854564          (872)     51.140.52.235     109.146.184.44  IKE          IKE:version 1.0, Identity protection (Main Mode), Payloads = HDR*, IDr, Flags = ..E, Length = 76

10836    3:29:18 PM 1/17/2017    64.2053442          (0)         109.146.184.44  51.140.52.235     IKE          IKE:version 1.0, Quick Mode, Payloads = HDR*, HASH, Flags = ..E, Length = 156

10847    3:29:18 PM 1/17/2017    64.2059376          (872)     51.140.52.235     109.146.184.44  IKE          IKE:version 1.0, Quick Mode, Payloads = HDR*, HASH, Flags = .CE, Length = 204

11340    3:29:19 PM 1/17/2017    65.8828640          (0)         109.146.184.44  51.140.52.235     IKE          IKE:version 1.0, Quick Mode, Payloads = HDR*, HASH, Flags = ..E, Length = 60

11358    3:29:19 PM 1/17/2017    65.8834712          (872)     51.140.52.235     109.146.184.44  IKE          IKE:version 1.0, Quick Mode, Payloads = HDR*, HASH, Flags = .CE, Length = 76

11360    3:29:19 PM 1/17/2017    65.9038098          (0)         109.146.184.44  51.140.52.235     IKE          IKE:version 1.0, Informational, Payloads = HDR*, HASH, Flags = ..E, Length = 76

14204    3:29:37 PM 1/17/2017    83.9247296          (0)         109.146.184.44  51.140.52.235     IKE          IKE:version 0.0, Unknown Exchange Type (0), Payloads = , Flags = , Length = 0

14205    3:29:37 PM 1/17/2017    83.9247303          (0)         109.146.184.44  51.140.52.235     IKE          IKE:version 0.0, Unknown Exchange Type (0), Payloads = , Flags = , Length = 0

17313    3:29:57 PM 1/17/2017    103.9514598       (0)         109.146.184.44  51.140.52.235     IKE          IKE:version 0.0, Unknown Exchange Type (0), Payloads = , Flags = , Length = 0

17314    3:29:57 PM 1/17/2017    103.9514605       (0)         109.146.184.44  51.140.52.235     IKE          IKE:version 0.0, Unknown Exchange Type (0), Payloads = , Flags = , Length = 0

20371    3:30:17 PM 1/17/2017    123.9735584       (0)         109.146.184.44  51.140.52.235     IKE          IKE:version 0.0, Unknown Exchange Type (0), Payloads = , Flags = , Length = 0

20372    3:30:17 PM 1/17/2017    123.9735592       (0)         109.146.184.44  51.140.52.235     IKE          IKE:version 0.0, Unknown Exchange Type (0), Payloads = , Flags = , Length = 0

24828    3:30:37 PM 1/17/2017    143.9986003       (0)         109.146.184.44  51.140.52.235     IKE          IKE:version 0.0, Unknown Exchange Type (0), Payloads = , Flags = , Length = 0

24829    3:30:37 PM 1/17/2017    143.9986020       (0)         109.146.184.44  51.140.52.235     IKE          IKE:version 0.0, Unknown Exchange Type (0), Payloads = , Flags = , Length = 0

30632    3:30:57 PM 1/17/2017    164.0231420       (0)         109.146.184.44  51.140.52.235     IKE          IKE:version 0.0, Unknown Exchange Type (0), Payloads = , Flags = , Length = 0

30633    3:30:57 PM 1/17/2017    164.0231437       (0)         109.146.184.44  51.140.52.235     IKE          IKE:version 0.0, Unknown Exchange Type (0), Payloads = , Flags = , Length = 0

33638    3:31:12 PM 1/17/2017    178.4168709       (872)     51.140.52.235     109.146.184.44  IKE          IKE:version 1.0, Identity protection (Main Mode), Payloads = HDR, SA, VID, Flags = ..., Length = 372

33644    3:31:12 PM 1/17/2017    178.4359920       (0)         109.146.184.44  51.140.52.235     IKE          IKE:version 1.0, Identity protection (Main Mode), Payloads = HDR, SA, VID, Flags = ..., Length = 148

33654    3:31:12 PM 1/17/2017    178.4386580       (872)     51.140.52.235     109.146.184.44  IKE          IKE:version 1.0, Identity protection (Main Mode), Payloads = HDR, Ni, KE, NAT-D, Flags = ..., Length = 260

33658    3:31:12 PM 1/17/2017    178.4598735       (0)         109.146.184.44  51.140.52.235     IKE          IKE:version 1.0, Identity protection (Main Mode), Payloads = HDR, Nr, KE, NAT-D, Flags = ..., Length = 228

33668    3:31:12 PM 1/17/2017    178.4608792       (872)     51.140.52.235     109.146.184.44  IKE          IKE:version 1.0, Identity protection (Main Mode), Payloads = HDR*, IDr, Flags = ..E, Length = 76



This thread was automatically locked due to age.
Parents Reply Children
No Data