Dear all,
we have a strange issue using L2TP/IPsec with Windows 7 and UTM 9.
Trying to connect using Certificates results in Error 789.
Additional following Errors are logged in Security Eventlog:
Event 4976
During Main Mode negotiation, IPsec received an invalid negotiation packet. If this problem persists, it could indicate a network issue or an attempt to modify or replay this negotiation.
Local Network Address: IP of Client
Remote Network Address: IP of Gateway
Keying Module Name: IKEv1
Event 4652
An IPsec Main Mode negotiation failed.
Local Endpoint:
Principal Name: Name of Client
Network Address: IP of Client
Keying Module Port: 4500
Local Certificate:
SHA Thumbprint: xyz
Issuing CA: CA of UTM
Root CA: dn of CA
Remote Endpoint:
Principal Name: -
Network Address: IP of Gateway
Keying Module Port: 4500
Remote Certificate:
SHA thumbprint: -
Issuing CA: -
Root CA: -
Additional Information:
Keying Module Name: IKEv1
Authentication Method: Certificate
Role: Initiator
Impersonation State: Not enabled
Main Mode Filter ID: 69620
Failure Information:
Failure Point: Local Computer
Failure Reason: new policy invalidated sas formed with old policy State: Sent third (ID-) Payload
Initiator Cookie: %21
Responder Cookie: %22
The strange thing is when we are switching the Interface to an internal interface and use certificates and connect over the local network it works without any Problem.
Also connecting with L2TP/IPsec using PSK is working fine over WAN.
I hope someone of you can help.
Kind regards,
Andreas
This thread was automatically locked due to age.
Guest User!
You are not Sophos Staff.
