* Home Help Login Register

Welcome, Guest. Please login or register.
Did you miss your activation email?
Saturday 20 April 2024, 12:09:30 pm

Login with username, password and session length

CLICK HERE for the The official Endian Roadmap and Issue tracker
14247 Posts in 4376 Topics by 6491 Members
Latest Member: roy
Search:     Advanced search
+  EFW Support
|-+  Support
| |-+  VPN Support
| | |-+  EFW 3.0 IPSEC VPN to a Netgear SRX5308...		 0 Members and 1 Guest are viewing this topic. « previous next »
Pages: [1] Go Down Print
Author Topic: EFW 3.0 IPSEC VPN to a Netgear SRX5308...  (Read 8799 times)
diamondcomputer
Jr. Member
*
Offline Offline

Posts: 1
« on: Saturday 25 January 2014, 06:45:26 am »
Good afternoon.

We've been running the 2.5.2 Endian Community Edition for a while now, including an IPSEC VPN connection to a Netgear SRX5308 Firewall with no significant issues.  Today we upgraded (well, ended up reloading and reconfiguring from scratch due to issues with the upgrade process) to the 3.0 release, and are having significant issues getting a solid VPN tunnel back to the router.  It establishes, works for a few minutes, then drops, then eventually reestablishes.  The VPN logs on the Netgear Router are full of errors including :

[SRX5308] [IKE] ERROR:  Received mode config from xx.xx.xx.xx[500], but local configuration does not have mode config or xauth.
...
[SRX5308] [IKE] ERROR:  failed to start post getspi.
[SRX5308] [IKE] ERROR:  encryption 5 failed.
...
[SRX5308] [IKE] ERROR:  can't start the IKE_AUTH exchange, there is no IKE-SA, 8130a72f6ea88b6c:94e415d4477173c4:00000001

I've verified that the settings and timeouts are the same on both sides, and before 3.0 this configuration was working so I'm a bit at a loss.  Does anyone have any thoughts?

Thanks in advance.

Phil Malmstrom
Diamond Computer Inc.
Logged
Pages: [1] Go Up Print 
« previous next »
Jump to:  

Page created in 0.031 seconds with 19 queries.
Powered by SMF 1.1 RC2 | SMF © 2001-2005, Lewis Media Design by 7dana.com