Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

a problem between Contivity 1600 and Netgear fvs318 ?

Status
Not open for further replies.
zifou76

zifou76

Technical User
Nov 24, 2003
3
FR
Hello !

In first, i'm sorry for my english because i'm french :)
I'm a newbie in this forum which looks very interesting.

This is my network
_________ _______
----------|contivity|-----internet----|netgear|------
172.16.2.0| 1600 | |fvs318 |192.168.19.0
/32 213.*.*.* 81.*.*.* /32

In CONTIVITY 1600, i have :
Encryption:
- ESP - Triple DES with SHA1 Integrity: Disabled
- ESP - Triple DES with MD5 Integrity: Enabled
- ESP - 56-bit DES with MD5 Integrity: Enabled
- ESP - 40-bit DES with MD5 Integrity: Disabled
- AH - Authentication Only (HMAC-SHA1): Enabled
- AH - Authentication Only (HMAC-MD5): Enabled
IKE Encryption and Diffie-Hellman Group: Triple DES with Group 2 (1024-bit prime)
Vendor ID: Enabled
Perfect Forward Secrecy: Enabled
Compression: Disabled
Rekey Timeout: 01:00:00
Rekey Data Count: (None)
ISAKMP Retransmission Interval: 16
ISAKMP Retransmission Max Attempts: 4

In NETGEAR, i have:
Main mode
Perfect forward Secrecy :Enabled
Encryption Protocol :3DES
Key life :3600 seconds
IKE life time :28800 seconds


I have difficult to connect them, i've just the phase 1 established P1:M-Estab. P2: none

Can you help me to explain this netgear's log:

Mon, 11/24/2003 12:46:38 - FVS318 IPsec:malformed payload in packet
Mon, 11/24/2003 12:46:54 - FVS318 IPsec:Receive Packet address:0x13967d0 from 213.*.*.*
Mon, 11/24/2003 12:46:54 - FVS318 IPsec:loglog[3] *#hahaha.... next payload type of ISAKMP Hash Payload has an unknown value: 243
Mon, 11/24/2003 12:46:54 - FVS318 IPsec:malformed payload in packet
Mon, 11/24/2003 12:47:10 - FVS318 IPsec:Receive Packet address:0x13967d0 from 213.*.*.*
Mon, 11/24/2003 12:47:10 - FVS318 IKE:[to ces] RX << XCHG_INFO : 213.*.*.*
Mon, 11/24/2003 12:47:10 - FVS318 IPsec:Enter Process_DeleteSA() spi_len=16
Mon, 11/24/2003 12:47:10 - FVS318 IKE:RX << DELETE ISAKMP SA : 213.*.*.* ,I-R=1c b6 18 4 48 97 b8 c9 29 9 92 33 a7 f6 d2 89
Mon, 11/24/2003 12:47:10 - FVS318 IKE:[to ces] ISAKMP SAs were Deleted!
Mon, 11/24/2003 12:47:32 - FVS318 IPsec:Receive Packet address:0x13967d0 from 213.*.*.*
Mon, 11/24/2003 12:47:32 - FVS318 IPsec:main_inI1_outR1()
Mon, 11/24/2003 12:47:32 - FVS318 IKE:peer Initialized IKE Main Mode
Mon, 11/24/2003 12:47:32 - FVS318 IKE:[to ces] RX << MM_I1 : 213.*.*.*
Mon, 11/24/2003 12:47:32 - FVS318 IPsec:New State index:0, sno:5
Mon, 11/24/2003 12:47:32 - FVS318 IPsec:responding to Main Mode
Mon, 11/24/2003 12:47:32 - FVS318 IPsec:Oakley Transform 1 accepted
Mon, 11/24/2003 12:47:32 - FVS318 IKE:OAKLEY_PRESHARED_KEY/OAKLEY_3DES_CBC/MODP1024
Mon, 11/24/2003 12:47:32 - FVS318 IKE:[to ces] TX >> MM_R1 : 213.*.*.*
Mon, 11/24/2003 12:47:32 - FVS318 IPsec:inserting event EVENT_RETRANSMIT, timeout in 10 seconds for #5
Mon, 11/24/2003 12:47:32 - FVS318 IPsec:Receive Packet address:0x13967d0 from 213.*.*.*
Mon, 11/24/2003 12:47:32 - FVS318 IPsec:main_inI2_outR2()
Mon, 11/24/2003 12:47:32 - FVS318 IKE:[to ces] RX << MM_I2 : 213.*.*.*
Mon, 11/24/2003 12:47:32 - FVS318 IKE:[to ces] TX >> MM_R2 : 213.*.*.*
Mon, 11/24/2003 12:47:32 - FVS318 IPsec:inserting event EVENT_RETRANSMIT, timeout in 10 seconds for #5
Mon, 11/24/2003 12:47:34 - FVS318 IPsec:Receive Packet address:0x13967d0 from 213.*.*.*
Mon, 11/24/2003 12:47:34 - FVS318 IPsec:main_inI3_outR3()
Mon, 11/24/2003 12:47:34 - FVS318 IKE:[to ces] RX << MM_I3 : 213.*.*.*
Mon, 11/24/2003 12:47:34 - FVS318 IPsec:Decoded Peer's ID is ID_IPV4_ADDR:172.16.2.3 and 172.16.2.3 in st
Mon, 11/24/2003 12:47:34 - FVS318 IKE:[to ces] TX >> MM_R3 : 213.*.*.*
Mon, 11/24/2003 12:47:34 - FVS318 IPsec:inserting event EVENT_SA_EXPIRE, timeout in 28980 seconds for #5
Mon, 11/24/2003 12:47:34 - FVS318 IPsec:STATE_MAIN_R3: sent MR3, ISAKMP SA established
Mon, 11/24/2003 12:47:34 - FVS318 IPsec:Receive Packet address:0x13967d0 from 213.*.*.*
Mon, 11/24/2003 12:47:34 - FVS318 IPsec:New State index:3, sno:6
Mon, 11/24/2003 12:47:34 - FVS318 IPsec:quick_inI1_outR1()
Mon, 11/24/2003 12:47:34 - FVS318 IKE:[to ces] RX << QM_I1 : 213.*.*.*
Mon, 11/24/2003 12:47:34 - FVS318 IPsec:peer client ID payload ID_IPV4_ADDR specifies protocol 4; we only support 0


Tahnks for your help
 
Sort by date Sort by votes
I've setup many tunnels between Nortel contivity boxes and 3rd party boxes but I've never been able to get a tunnel up between a Nortel and a Netgear box. Sorry dude.
 
Upvote 0 Downvote
Hi!,

First, sorry, because I can't help you and I am using this post to ask you for something.

Can you send me the files of a recovery disk of your contivity, I have some problems with mine and it doesn't boot ;o(

Would you be so kind?

Thanks in advance
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

teknance
  • Locked
  • Question
Discovering Portugal: Uncover Hidden Destinations and VPN Solutions
Replies
5
Views
449
GlobeTrekkerGal
GlobeTrekkerGal
sarahz2
  • Locked
  • Question
Best vpn safe and fast
Replies
4
Views
337
GlobeTrekkerGal
GlobeTrekkerGal
MP2023
  • Locked
  • Question
How to Create an site to site VPN
Replies
1
Views
278
sircles
sircles
Sparrow4
  • Locked
  • Question
CISCO AnyConnect - URL instead of IP Address
Replies
4
Views
929
iggsterman
iggsterman
Randy_F
  • Locked
  • Question
Need to connect to a VPN on startup... how to run a script that will automatically reconnect
Replies
0
Views
247
Randy_F
Randy_F

Part and Inventory Search

Sponsor

Back
Top