Hi!
after a long time just reading in this forum and getting my problems solved by reading the posts of others, I'm now at a point where I hope that I get help by posting my problem.
I try to Setup a VPN to a ZyWall. My Client has a brand new ASG120 running at the latest Software (v9). I need to connect to a remote system of a partner of my client who runs a ZyWall.
I got the following settings for my IPsec-Tunnel:
- Phase 1: AES128, MD5, 86400s SA lifetime, DH2
- Phase 2: AES128, MD5, 86400s SA lifetime, NO PFS
- no strict Policy, no Compression
- Gateway is initiate connection, secured by PSK, VPN ID is the Dyndns-Hostname of my ASG (phy******.mooo.com), Remote Network is the whole Private Subnet on the Partners side
- Local network is my whole private subnet, Automatic FW-Rules, Strict Routing, Support MTU path discovery.
When i now connect, i always get the Error Message:
"packet from YYY.YYY.YYY.YYY:500: ignoring informational payload, type NO_PROPOSAL_CHOSEN"
We tried almost every combination of the P1 and P2-Settings and there are really the same now. The ZyWall itself says only the same in their logs.
Please see the attachments (ASG Logs; default and with all debug-options, ZyWall Logs, ZyWall Config).
Thanks for your help!
Rolf
This thread was automatically locked due to age.
Guest User!
You are not Sophos Staff.
