Welcome, Guest. Please login or register.
Did you miss your activation email?
Friday 27 May 2022, 04:49:52 pm

Login with username, password and session length

The Latest Endian Firewall is now available for download HERE
14152 Posts in 4328 Topics by 6305 Members
Latest Member: ekraft-fcc
Search:     Advanced search
+  EFW Support
|-+  Support
| |-+  VPN Support
| | |-+  EFW 3.0 IPSEC VPN to a Netgear SRX5308...
0 Members and 0 Guests are viewing this topic. « previous next »
Pages: [1] Go Down Print
Author Topic: EFW 3.0 IPSEC VPN to a Netgear SRX5308...  (Read 5404 times)
diamondcomputer
Jr. Member
*
Offline Offline

Posts: 1


« on: Saturday 25 January 2014, 06:45:26 am »

Good afternoon.

We've been running the 2.5.2 Endian Community Edition for a while now, including an IPSEC VPN connection to a Netgear SRX5308 Firewall with no significant issues.  Today we upgraded (well, ended up reloading and reconfiguring from scratch due to issues with the upgrade process) to the 3.0 release, and are having significant issues getting a solid VPN tunnel back to the router.  It establishes, works for a few minutes, then drops, then eventually reestablishes.  The VPN logs on the Netgear Router are full of errors including :

[SRX5308] [IKE] ERROR:  Received mode config from xx.xx.xx.xx[500], but local configuration does not have mode config or xauth.
...
[SRX5308] [IKE] ERROR:  failed to start post getspi.
[SRX5308] [IKE] ERROR:  encryption 5 failed.
...
[SRX5308] [IKE] ERROR:  can't start the IKE_AUTH exchange, there is no IKE-SA, 8130a72f6ea88b6c:94e415d4477173c4:00000001

I've verified that the settings and timeouts are the same on both sides, and before 3.0 this configuration was working so I'm a bit at a loss.  Does anyone have any thoughts?

Thanks in advance.

Phil Malmstrom
Diamond Computer Inc.
Logged
Pages: [1] Go Up Print 
« previous next »
Jump to:  

Page created in 0.031 seconds with 19 queries.
Powered by SMF 1.1 RC2 | SMF © 2001-2005, Lewis Media Design by 7dana.com