IsabelleMonte
Programmer
Hello,
I setup a Ike/Ipsec policy on my windows 2000 in order to establish a security association when using port 2427 from MyIP (the w2000 one) to a remote Ip (lets say a.b.c.d).
evrything fine phase I and II are negociated successfully.
Then i wanted to establish another Ike negoc between MyIp and another remote Ip : a.b.c.e (i m using the same setting, i just changed a.b.c.d to a.b.c.e)
i can see the isakmp packet of the phase I (main mode) between the 2 Ip adress, but unfortunately the phase I failed with a "no response from peer".
the weird thing is that i deleted the first policy for the remote ip a.b.c.d, but i can still establish a Ike negoc between MyIp/a.b.c.d ??? (at this stage the pc is only configured for establishing ike connection with a remoteIp equal to a.b.c.e so i dont understand).
is there any cached Ike policies at some point??
(i must say i m not using a w2000 for the remote Ip, its a proprietary stack, so the problem may be here but i checked everything seems ok on this side, any way the win2000 server should not allow the a.b.c.d to negociate anything cause i removed the policy for this a.b.c.d ip),
any help welcome guys!
I setup a Ike/Ipsec policy on my windows 2000 in order to establish a security association when using port 2427 from MyIP (the w2000 one) to a remote Ip (lets say a.b.c.d).
evrything fine phase I and II are negociated successfully.
Then i wanted to establish another Ike negoc between MyIp and another remote Ip : a.b.c.e (i m using the same setting, i just changed a.b.c.d to a.b.c.e)
i can see the isakmp packet of the phase I (main mode) between the 2 Ip adress, but unfortunately the phase I failed with a "no response from peer".
the weird thing is that i deleted the first policy for the remote ip a.b.c.d, but i can still establish a Ike negoc between MyIp/a.b.c.d ??? (at this stage the pc is only configured for establishing ike connection with a remoteIp equal to a.b.c.e so i dont understand).
is there any cached Ike policies at some point??
(i must say i m not using a w2000 for the remote Ip, its a proprietary stack, so the problem may be here but i checked everything seems ok on this side, any way the win2000 server should not allow the a.b.c.d to negociate anything cause i removed the policy for this a.b.c.d ip),
any help welcome guys!