Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Shaun E on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

5610 Phone and Sonicwall TZ100 - Need help connecting

Status
Not open for further replies.
PhoneGurl7385

PhoneGurl7385

Programmer
Oct 14, 2010
18
US
I am trying to set up a VPN phone with the Avaya 5610. I have made it through Phase 1 and having an issue with Phase 2.

Error code:3997700:0
Module:IKECFG:1184

Error code: 3997700:0
Module: IKMPD:353

My Settings are the following:
SERVER: IP OF THE VPN ROUTER
IKE ID: GroupVPN
PSK: presharded key from IT guy (re-entered serveral times to ensure it was correct)
IKE PARAMETERS:
IKE ID TYPE: FQDN
Diffie-Helman Group: 2
Encryption Alg: 3DES
Authentication Alg: SHA1
IKE Xchg Mode: Agressive
IKE Config Mode: Disabled
XAuth: Disabled
Cert Expiry Check: Disabled
Cert DN Check: Disabled

IPSec Parameters:
Encryption Alg:3DES
Authentication Alg: SHA1
Diffie-Helman Group: 2

VPN START MODE: BOOT

PASSWORD TYPE: N/A

Encapulation: 4500-4500

Systlog Server: Nothing programmed here

Protected Nets:
Virtual IP: Statically assigned to the internal subnet
Remote Net #1: 192.XXX.X.0/24

COPY TOS: NO

FILE SRVR: BLANK

QTEST: DISABLED

CONNECTIVITY CHECK: ALWAYS

I have checked with the router configuration and it matches. I am getting an error on the Sonicwall that

NAT Discovery : Local IPSec Security Gateway behind a NAT/NAPT Device
NAT Discovery : Peer IPSec Security Gateway behind a NAT/NAPT DeviceIKE Responder: ESP encryption algorithm does not match
IKE Responder: IPSec proposal does not match (Phase 2)


Any suggestions on how to fix this issue?
 
Sort by date Sort by votes
First turn "H323 transformations" off in the sonic.

Avaya_Red.gif

___________________________________________
It works! Now if only I could remember what I did...

Dain Bramaged
___________________________________________
 
Upvote 0 Downvote
the H323 was turned off on the sonicwall.

And the document that you posted was for sonicwall to sonicwall not a sonicwall to VPN phone configuration.

Any other suggestions that we could try?
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

John Tel
  • Locked
  • Question
IPO shared phone calling restrictions help.
Replies
4
Views
670
John Tel
John Tel
finest
  • Locked
  • Question
Need help programming/fixing Avaya SBC (ASBCE)? 3
Replies
0
Views
772
finest
finest
TnPtech
  • Question
Avaya IP Office -IP phone issue. 2
Replies
17
Views
989
MikeeOK
MikeeOK
KatyDVLRS
  • Locked
  • Question
Avaya 6424D+M - Need Help!
Replies
2
Views
456
ipohead
ipohead
A
  • Locked
  • Question
Connecting 2 IP Office together
Replies
9
Views
971
derfloh
derfloh

Part and Inventory Search

Sponsor

Back
Top