Site-to-Site VPN Tunnel errors

[SNosko]

I have a Cisco VPN Concentrator 3000 and have our PIX 501s setup to create a VPN tunnel and am getting the errors below. No tunnel is ever created. I put X's in place of the peer IP address on this thread for security reasons. Any ideas?

Snosko


14387 08/18/2003 11:49:51.320 SEV=4 IKE/100 RPT=11 12.152.X.X
Group [12.152.X.X]
Received encrypted Oakley Main Mode packet with invalid payloads,
MsgId (0x00000000)

14390 08/18/2003 11:50:57.150 SEV=4 IKE/136 RPT=10 12.152.X.X
Group [12.152.X.X]
IKE session establishment timed out [MM_WAIT_MSG5], aborting!

 

[doctor2001]

Need a little more info can you post you config of the 501 (change IP Address for security)

 

[scrimmy]

SNosko

I have inherited a project to connect remote sites to our HQ. We have a Concentrator 3000 at our HQ and will be using PIX-501's on the remote sites to create a lan-to-lan link from HQ.

As you are using the same hardware configuration could you please post a working PIX-501 config so I can see where I am going wrong (obviously change necessary IP addresses)

I would like to keep what little hair I have left on my head but I fear I will be pulling more out before I have this project sorted out.

Many thanks