Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Westi on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Verify VPN between 851 and Linksys vpn

Status
Not open for further replies.
matthias7

matthias7

ISP
Jun 8, 2006
60
MX
Hi

I am trying to configure an vpn between cisco 850 and linksys wrv210.

The configuration that i made in cisco 850 router is as follow ...

crypto isakmp policy 1
hash md5
authentication pre-share
lifetime 28800
crypto isakmp key mattpassword address (WRV210 public ip)

crypto ipsec transform-set matt ah-md5-hmac esp-3des
exit
ip access-list 101 permit ip 172.16.0.0 0.0.255.255 172.16.0.0 0.0.255.255


crypto map matt 2 ipsec-isakmp
set peer (public ip WRV210)
set security-association lifetime seconds 190
set transform-set matt
match address 101

int fa4
crypto map matt

RV210
Key Exchange Method:auto(ike)
Operation Mode: main
ISAKMP Encryption Method:auto
ISAKMP Authentication Method: MD5 <--- greyed out
ISAKMP DH Group:2
ISAKMP Key Lifetime (s): 28800
IPSec Encryption Method: 3DES
IPSec Authentication Method: MD5
IPSec DH Group: The group is the same as ISAKMP.
IPSec Key Lifetime(s): 3600
Pre-Shared Key: mattpassword


thanks for all help

 
Sort by date Sort by votes
WRV210 says:

014 [Sat 13:46:51] loading secrets from "/etc/ipsec.secrets"
015 [Sat 13:48:00] "TunnelA" #57: [WRV210 Response:] Remote peer has no tunnel entry to correspond to this tunnel.
016 [Sat 13:48:00] "TunnelA" #57: [WRV210 Response:] Please check your Remote Secure Gateway setting.
017 [Sat 13:48:00] "TunnelA" #57: max number of retransmissions (2) reached STATE_MAIN_I1. No response (or no acceptable response) to our first IKE message
018 [Sat 13:48:00] "TunnelA" #57: starting keying attempt 3 of at most 5
019 [Sat 13:48:00] "TunnelA" #58: initiating Main Mode to replace #57
020 [Sat 13:48:00] packet from (public IP Cisco 850):500: ignoring informational payload, type NO_PROPOSAL_CHOSEN
021 [Sat 13:48:00] packet from (cisco 850 public IP):500: received and ignored informational message
022 [Sat 13:48:00] forgetting secrets
023 [Sat 13:48:00] loading secrets from "/etc/ipsec.secrets"

thanks ...
 
Upvote 0 Downvote
The encryption method is listed as auto in the linksys config. You should hard code this value to be 3des and include encryption 3des in the isakmp policy on the 850

I hate all Uppercase... I don't want my groups to seem angry at me all the time! =)
- ColdFlame (vbscript forum)
 
Upvote 0 Downvote
Hi

yes it was the decfinition of the MD3 that was missing in cisco.

Thanks ...
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

quazimotto
  • Locked
  • Question
Cisco ASA_5505 VPN to Juniper_SRX210 VPN IS UP_ No Traffic!!!!!!
Replies
0
Views
139
quazimotto
quazimotto
Lccarter
  • Locked
  • Question
Cisco CUCM Provisioning and Order Management System
Replies
1
Views
274
Lccarter
Lccarter
bmiller23
  • Locked
  • Question
Issues Between Cisco Network &amp; NVT Phybridge POLRE 8 Port Extender
Replies
13
Views
499
VinceWhirlwind
VinceWhirlwind
detewe
  • Locked
  • Question
JTAG pinout on Linksys E4200v2 / EA4500 routers
Replies
0
Views
198
detewe
detewe
acabezas2014
  • Locked
  • Question
Need to create QoS for SNMP and Radius traffic on Cisco 4948 Switches
Replies
0
Views
145
acabezas2014
acabezas2014

Part and Inventory Search

Sponsor

Back
Top