Encryption Failure

Budgie69 · May 4, 2006

Hello

Hope somebody can help, getting the following error message:

encryption failure: Wrong peer gateway for decrypted packet (VPN Error code 01)

Secureclient user is coming from an IP address which is already defined in a site to site VPN. hence the error message.

I have tried moving the secureclient rule above the site2site vpn rule but this has not helped. Any ideas ?

thanks

stooo · May 9, 2006

You could try using Office mode, and assigning the secure client user an ip from a pool that isn't in use elsewhere?

Stu

Budgie69 · May 9, 2006

Thanks Stu

Will give this a go.

ansellrk · May 10, 2006

You could also supernet the subnet, reducing it down to 16 addresses by changing the subnet mask. This would give you several smaller networks rather than using the whole subnet. We have don this on all of our Site to Sites because they all use IP40's which only support 16 devices anyway. We have used 192.168.100.0 / 255.255.255.240 (or 28) as the first network. This gives you 16 subnets on that subnet reducing the encrypted subnet down to just 16 addresses. This will give you more flexibility as you grow too. If you have trouble working out subnets then there is a network calculator at...

http://www.subnetmask.info/

Have fun!

Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Encryption Failure

Budgie69

Technical User

stooo

Technical User

Budgie69

Technical User

ansellrk

Technical User

Similar threads

Part and Inventory Search

Sponsor