This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

S-2-S VPN to Checkpoint

Hi,

I'm trying to create a vpn between a Sophos UMT 9 AWS Instance and a Checkpoint R77.20 Firewall Cluster.

This is what I got on Sophos side:

2014:11:10-16:00:46 utm9 pluto[6450]: "S_xyz" #8: Quick Mode I1 message is unacceptable because it uses a previously used Message ID 0xd5004ab8 (perhaps this is a duplicated packet)
2014:11:10-16:00:46 utm9 pluto[6450]: "S_xyz" #8: sending encrypted notification INVALID_MESSAGE_ID to :500

How can I understand this error ?

This thread was automatically locked due to age.

Parents

0 BAlfson over 10 years ago

Hi, maru, and welcome to the User BB!

We would need to see the lines before those to understand what might be the problem. With no Debug enabled, please disable the IPsec Connection, start the IPsec Live Log and enable the IPsec Connection. Please show us the lines from one connection attempt - probably about 60 lines or fewer.

Cheers - Bob

Sophos UTM Community Moderator
Sophos Certified Architect - UTM
Sophos Certified Engineer - XG
Gold Solution Partner since 2005

MediaSoft, Inc. USA
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 BAlfson over 10 years ago

Hi, maru, and welcome to the User BB!

We would need to see the lines before those to understand what might be the problem. With no Debug enabled, please disable the IPsec Connection, start the IPsec Live Log and enable the IPsec Connection. Please show us the lines from one connection attempt - probably about 60 lines or fewer.

Cheers - Bob

Sophos UTM Community Moderator
Sophos Certified Architect - UTM
Sophos Certified Engineer - XG
Gold Solution Partner since 2005

MediaSoft, Inc. USA
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data