Hi
I have a Multi-Site VPN with various versions of Checkpoint FW-1 that all connect to a central "DataCentre" that uses 4.1 SP5 on NT4. One of the newer sites is using NG FP2, and successfully tunnels to the DataCentre using DES, MD5, No Compression, PFS, DH Group2. Anywhere from 1 to 4 times a day, just after IKE Main Mode / Quick Mode negotiation the tunnel breaks down and the log shows the following;
encryption failure: Decrypted Methods didn't matched rule
If left alone, it resolves itself in anything from a few minutes to as long as an hour. I have tried recreating the encryption rules from scratch, chosen a different shared key. Has anyone seen this error or have any idea where I'm going wrong?
Thanks
Gavin
I have a Multi-Site VPN with various versions of Checkpoint FW-1 that all connect to a central "DataCentre" that uses 4.1 SP5 on NT4. One of the newer sites is using NG FP2, and successfully tunnels to the DataCentre using DES, MD5, No Compression, PFS, DH Group2. Anywhere from 1 to 4 times a day, just after IKE Main Mode / Quick Mode negotiation the tunnel breaks down and the log shows the following;
encryption failure: Decrypted Methods didn't matched rule
If left alone, it resolves itself in anything from a few minutes to as long as an hour. I have tried recreating the encryption rules from scratch, chosen a different shared key. Has anyone seen this error or have any idea where I'm going wrong?
Thanks
Gavin
