Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 8 replies
  • Subscribers 1 subscriber
  • Views 7839 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Shrew and IPSec on Astaro UTM9

Spoony
Hi there,

i have the following problem. I established a connection through the shrew Softwareclient to the astaro and the IP-Sec log tells me the following:

2012:09:25-17:10:26 rfw1-1 pluto[13125]: "S_Shrew"[22] 109.84.0.72:41838 #14: cannot respond to IPsec SA request because no connection is known for 0.0.0.0/0===80.134.168.31:4500[80.134.168.31]...109.84.0.72:41838[172.20.10.2]===10.242.4.1/32
2012:09:25-17:10:26 rfw1-1 pluto[13125]: "S_Pohl Shrew"[22] 109.84.0.72:41838 #14: sending encrypted notification INVALID_ID_INFORMATION to 109.84.0.72:41838 

Can anyone tell me what went wrong?

Thanks in advance

Lars


This thread was automatically locked due to age.
Parents
  • 0
    Hi Lars,

    You might try without using XAUTH.  Also, does the X509 certificate used on the 'Advanced' tab of IPsec have VPNId = to the hostname of your UTM, and is that hostname an FQDN that resolves to the public IP of your UTM?

    Cheers - Bob
  • 0 in reply to BAlfson
    Hi Bob,

    thank you very much for your reply.
    All the settings you described were set and everything is okay.

    The IP-Sec Client from the Astaro works absolutely fine and connects without
    Errors!

    Even the Cisco VPN Settings for our iOS Devices work fine.
    By the way, are there any problems with iOS 6 and Cisco VPN?

    Any other suggestions for the shrew Software?

    thanks in advance

    lars
  • 0 in reply to Spoony
    it looks like a NAt-T problem: 109.84.0.72:41838[172.20.10.2]
Reply Children
No Data