This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

VPN between asl and watchguard?

Hey,

I tried to set up a VPN between a watchguard and ASLv4. I used a PSK, i made sure that all the settings were the same on both sides but the connection failed.

This is the error I get in my life IPSec Log:

apr 2 10:08:30 (none) pluto[1105]: "WatchGuard__VPN_1" #2: ERROR: asynchronous network error report on eth1 for message to 192.168.1.2 port 500, complainant 192.168.1.3: No route to host [errno 113, origin ICMP type 3 code 1 (not authenticated)]

If anybody knows what the problem might be, please let me know.

Thanks

This thread was automatically locked due to age.

0 IziMohVst over 22 years ago

re-installed my ASLv4 now everething works fine. Anyone have an explanation for this? [:S]
Cancel
Vote Up 0 Vote Down

Cancel
0 Tmor over 22 years ago in reply to IziMohVst

also received the error between 2 ASLs, looks like my upstream router is freaking out though?

?????

192.168.1.253 - upstream router (left)
217.234.111.5 - remote VPN IP (right ASL)

----- Log Left ASL -----
Sep 21 13:57:09 (none) pluto[2752]: "somedomain__dyndns__org_1" #26: max number of retransmissions (20) reached STATE_MAIN_I1.  No acceptable response to our first IKE message
Sep 21 13:57:09 (none) pluto[2752]: "somedomain__dyndns__org_1" #26: starting keying attempt 13 of an unlimited number
Sep 21 13:57:09 (none) pluto[2752]: "somedomain__dyndns__org_1" #28: initiating Main Mode to replace #26
Sep 21 13:57:09 (none) pluto[2752]: ERROR: asynchronous network error report on eth1 for message to 217.234.111.5 port 500, complainant 192.168.1.253: Protocol not available [errno 92, origin ICMP type 3 code 2 (not authenticated)]
Sep 21 13:58:19 (none) pluto[2752]: ERROR: asynchronous network error report on eth1 for message to 217.234.111.5 port 500, complainant 192.168.1.253: Protocol not available [errno 92, origin ICMP type 3 code 2 (not authenticated)]
Sep 21 14:00:19 (none) pluto[2752]: ERROR: asynchronous network error report on eth1 for message to 217.234.111.5 port 500, complainant 192.168.1.253: Protocol not available [errno 92, origin ICMP type 3 code 2 (not authenticated)]
Sep 21 14:02:19 (none) pluto[2752]: ERROR: asynchronous network error report on eth1 for message to 217.234.111.5 port 500, complainant 192.168.1.253: Protocol not available [errno 92, origin ICMP type 3 code 2 (not authenticated)]
Sep 21 14:04:19 (none) pluto[2752]: ERROR: asynchronous network error report on eth1 for message to 217.234.111.5 port 500, complainant 192.168.1.253: Protocol not available [errno 92, origin ICMP type 3 code 2 (not authenticated)]
Sep 21 14:06:19 (none) pluto[2752]: ERROR: asynchronous network error report on eth1 for message to 217.234.111.5 port 500, complainant 192.168.1.253: Protocol not available [errno 92, origin ICMP type 3 code 2 (not authenticated)]
Sep 21 15:29:20 (none) pluto[2752]: "somedomain__dyndns__org_1" #34: max number of retransmissions (20) reached STATE_MAIN_I1.  No acceptable response to our first IKE message
...
...

----- Log Right -----
Sep 21 13:57:22 (none) pluto[1242]: "somedomain2__dyndns__org_1" #181: max number of retransmissions (2) reached STATE_QUICK_I1.  No acceptable response to our first Quick Mode message: perhaps peer likes no proposal
Sep 21 13:57:22 (none) pluto[1242]: "somedomain2__dyndns__org_1" #181: starting keying attempt 67 of an unlimited number
Sep 21 13:57:22 (none) pluto[1242]: "somedomain2__dyndns__org_1" #183: initiating Quick Mode RSASIG+ENCRYPT+TUNNEL+PFS to replace #181
Sep 21 13:58:01 (none) pluto[1242]: "somedomain2__dyndns__org_1" #182: max number of retransmissions (2) reached STATE_QUICK_I1.  No acceptable response to our first Quick Mode message: perhaps peer likes no proposal
Sep 21 13:58:01 (none) pluto[1242]: "somedomain2__dyndns__org_1" #182: starting keying attempt 55 of an unlimited number
...
...
Cancel
Vote Up 0 Vote Down

Cancel