Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Rhinorhino on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Netgear FVS318 and SoftRemote VPN Phase 2 error

Status
Not open for further replies.
Azurri

Azurri

IS-IT--Management
Joined
Mar 12, 2003
Messages
2
Location
GB
Help!

I'm trying to connect a laptop with SoftRemote 1.4 installed to a Netgear FVS318 VPN.

Phase 1 completes fine (establishes IKE SA) but phase 2 fails.
I have checked the settings and they appear to be the same on client and server.

The client log says the following for phase 2:


MyConns\MAP - Initiating Phase 2 with Client IDs(message id: B1CCDF9C)
Initiator = IP ADDR=10.10.0.107,prot=0 port=0
Responder=IP SUBNET/MASK=***.***.***.0/255.255.255.0,prot=0 port=0
MyConns\MAP - SENDING>>>>ISAKMP OAK QM *(HASH,SA,NON,ID 2x)
MyConns\MAP - QM re-keying timed out (message id:B1CCDF9C).Retry count: 1
MyConns\MAP - SENDING>>>>ISAKMP OAK QM *(Retransmission)

same 2 lines as last 2 with retry count incresing

MyConns\MAP - Exceeded 3 re-keying attempts (message id:B4512B9E)




The FVS VPN log says the following:


Tues, 12/02/2003 04:17:10 - MAP IPsec:Receive Packet address:0x13974d4 from ***.***.***.**
Tues, 12/02/2003 04:17:10 - MAP IPsec:main_inI1_outR1()
Tues, 12/02/2003 04:17:10 - MAP IKE:Peer Initialized IKE Main Mode
Tues, 12/02/2003 04:17:10 - MAP IKE:[MAP_tmp7] RX << MM_I1 : ***.***.***.**
Tues, 12/02/2003 04:17:10 - MAP IPsec:New State index:2, sno:9
Tues, 12/02/2003 04:17:10 - MAP IPsec:Oakley Transform 1 accepted
Tues, 12/02/2003 04:17:10 - MAP IKE:OAKLEY_PRESHARED_KEY/OAKLEY_3DES_CBC/MODP768
Tues, 12/02/2003 04:17:10 - MAP IKE:[MAP_tmp7] TX >> MM_R1 : ***.***.***.**
Tues, 12/02/2003 04:17:10 - MAP IPsec:inserting event EVENT_RETRANSMIT, timeout in 10 seconds for #9
Tues, 12/02/2003 04:17:12 - MAP IPsec:Receive Packet address:0x13974d4 from ***.***.***.**
Tues, 12/02/2003 04:17:12 - MAP IPsec:main_inI2_outR2()
Tues, 12/02/2003 04:17:12 - MAP IKE:[MAP_tmp7] RX << MM_I2 : ***.***.***.**
Tues, 12/02/2003 04:17:12 - MAP IKE:[MAP_tmp7] TX >> MM_R2 : ***.***.***.**
Tues, 12/02/2003 04:17:12 - MAP IPsec:inserting event EVENT_RETRANSMIT, timeout in 10 seconds for #9
Tues, 12/02/2003 04:17:18 - MAP IPsec:Receive Packet address:0x13974d4 from ***.***.***.**
Tues, 12/02/2003 04:17:18 - MAP IPsec:main_inI3_outR3()
Tues, 12/02/2003 04:17:18 - MAP IKE:[MAP_tmp7] RX << MM_I3 : ***.***.***.**
Tues, 12/02/2003 04:17:18 - MAP IPsec:Decoded Peer's ID is ID_IPV4_ADDR:10.10.0.38 and 10.10.0.107 in st
Tues, 12/02/2003 04:17:18 - MAP IKE:[MAP_tmp7] TX >> MM_R3 : ***.***.***.**
Tues, 12/02/2003 04:17:18 - MAP IPsec:inserting event EVENT_SA_EXPIRE, timeout in 28980 seconds for #9
Tues, 12/02/2003 04:17:18 - MAP IPsec:STATE_MAIN_R3: sent MR3, ISAKMP SA established
Tues, 12/02/2003 04:17:18 - MAP IPsec:Receive Packet address:0x13974d4 from ***.***.***.**
Tues, 12/02/2003 04:17:18 - MAP IPsec:New State index:3, sno:10
Tues, 12/02/2003 04:17:18 - MAP IPsec:quick_inI1_outR1()
Tues, 12/02/2003 04:17:18 - MAP IKE:[MAP_tmp7] RX << QM_I1 : ***.***.***.**
Tues, 12/02/2003 04:17:18 - MAP IPsec:cannot respond to IPsec SA request because no connection is known for ***.***.***.0/255.255.255.0-***.***.***.**=====***.***.***.**-10.1
Tues, 12/02/2003 04:17:34 - MAP IPsec:Receive Packet address:0x13974d4 from ***.***.***.**
Tues, 12/02/2003 04:17:34 - MAP IPsec:loglog[3] *#hahaha.... next payload type of ISAKMP Hash Payload has an unknown value: 248
Tues, 12/02/2003 04:17:34 - MAP IPsec:malformed payload in packet
Tues, 12/02/2003 04:17:50 - MAP IPsec:Receive Packet address:0x13974d4 from ***.***.***.**
Tues, 12/02/2003 04:17:50 - MAP IPsec:loglog[3] *#hahaha.... next payload type of ISAKMP Hash Payload has an unknown value: 248
Tues, 12/02/2003 04:17:50 - MAP IPsec:malformed payload in packet
Tues, 12/02/2003 04:18:12 - MAP IPsec:Receive Packet address:0x13974d4 from ***.***.***.**
Tues, 12/02/2003 04:18:12 - MAP IPsec:loglog[3] *#hahaha.... next payload type of ISAKMP Hash Payload has an unknown value: 248
Tues, 12/02/2003 04:18:12 - MAP IPsec:malformed payload in packet

Any suggestions anyone?
 
Sort by date Sort by votes
Anyone?
 
Upvote 0 Downvote
Hi Azzuri

You want to check out the thread at thread463-562178 started out as FVS318-to-Win2k, then FVS318-to-XP, but most of us came to the conclusion that SafeNet was the way to go LOL.

Near the end of the thread you'll find a post from me with a link to a document created by mormiston that nicely covers the FVS-to-SoftRemote setup. I'd give you a link to the document, but you really should go get it from the thread so you can give mormiston a STAR for sharing it :-)
Besides, you'll probably want to read the related comments, and there are a lot of FVS-to-Softremote users there to help you.

Good Luck!
 
Upvote 0 Downvote

this may help

ftp://downloads.netgear.com/files/SafeNet%20to%20FVS318%20(remote%20access).pdf
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

teknance
  • Locked
  • Question Question
Discovering Portugal: Uncover Hidden Destinations and VPN Solutions
Replies
5
Views
1K
GlobeTrekkerGal
GlobeTrekkerGal
sarahz2
  • Locked
  • Question Question
Best vpn safe and fast
Replies
4
Views
1K
GlobeTrekkerGal
GlobeTrekkerGal
MP2023
  • Locked
  • Question Question
How to Create an site to site VPN
Replies
1
Views
896
sircles
sircles
ramblingrebel
  • Locked
  • Question Question
Built-in Windows 10 VPN
Replies
1
Views
932
Joon Smith
Joon Smith
LearningNetworking
  • Locked
  • Question Question
Linking Hosts on the same subnet via VPN
Replies
0
Views
852
LearningNetworking
LearningNetworking

Part and Inventory Search

Sponsor

Back
Top