Help With Warning Message PIX 515e

[ukdkbr123]

I'm not too familiar with PIX configuration and just recently inherited this mess and could use a little bit of direction on this error/warning message, here is the complete warning:

%PIX-4-402103: identity doesn't match negotiated identity (ip) dest_addr= 10.10.1.10, src_addr= 192.168.1.199, prot=udp, (ident) local=64.160.xxx.xxx, remote=70.234.xxx.xxx, local proxy=192.168.1.0/255.255.255.0/0/0, remote_proxy=10.10.1.0/255.255.255.0/0/0

We have a remote office with 5 PCs that use a vpn connection to access the main office here. The remote office is the 10.10.1.0 range, they use a Netgear VPN router to connect back here.

The one weird thing is that the src_addr (192.168.1.199) is my local PC. Nothing has changed on the PIX configuration and yet this warning just started appearing with a lot of frequency. Can anyone help me out with this?? Thanks!

 

[jeter]

Log Message %PIX-4-402103: identity doesn't match negotiated identity...
Explanation Unencapsulated IPSec packet does not match the negotiated identity. The peer is sending other traffic through this SA. It may be due to an SA selection error by the peer. This may be a hostile event.

Recommended Action Contact the peer's administrator to compare policy settings



Does the error go away if you power down your PC? Have you been comprimized?

Go Army!
N+,CCNA,CCVP
Tek-TIP Member 19,650