Welcome, Guest. Please login or register.
Did you miss your activation email?
Sunday 24 November 2024, 05:02:39 pm

Login with username, password and session length

The Latest Endian Firewall is now available for download HERE
14261 Posts in 4377 Topics by 6517 Members
Latest Member: Sandro
Search:     Advanced search
+  EFW Support
|-+  Support
| |-+  VPN Support
| | |-+  EFW 3.0 IPSEC VPN to a Netgear SRX5308...
0 Members and 0 Guests are viewing this topic. « previous next »
Pages: [1] Go Down Print
Author Topic: EFW 3.0 IPSEC VPN to a Netgear SRX5308...  (Read 12073 times)
diamondcomputer
Jr. Member
*
Offline Offline

Posts: 1


« on: Saturday 25 January 2014, 06:45:26 am »

Good afternoon.

We've been running the 2.5.2 Endian Community Edition for a while now, including an IPSEC VPN connection to a Netgear SRX5308 Firewall with no significant issues.  Today we upgraded (well, ended up reloading and reconfiguring from scratch due to issues with the upgrade process) to the 3.0 release, and are having significant issues getting a solid VPN tunnel back to the router.  It establishes, works for a few minutes, then drops, then eventually reestablishes.  The VPN logs on the Netgear Router are full of errors including :

[SRX5308] [IKE] ERROR:  Received mode config from xx.xx.xx.xx[500], but local configuration does not have mode config or xauth.
...
[SRX5308] [IKE] ERROR:  failed to start post getspi.
[SRX5308] [IKE] ERROR:  encryption 5 failed.
...
[SRX5308] [IKE] ERROR:  can't start the IKE_AUTH exchange, there is no IKE-SA, 8130a72f6ea88b6c:94e415d4477173c4:00000001

I've verified that the settings and timeouts are the same on both sides, and before 3.0 this configuration was working so I'm a bit at a loss.  Does anyone have any thoughts?

Thanks in advance.

Phil Malmstrom
Diamond Computer Inc.
Logged
Pages: [1] Go Up Print 
« previous next »
Jump to:  

Page created in 0.047 seconds with 19 queries.
Powered by SMF 1.1 RC2 | SMF © 2001-2005, Lewis Media Design by 7dana.com