Hmmm, I’m currently trying to use VaporSec 1.0 for remote access into a Netgear 328 firmware vers 1.4 whithout much success. The log on the 328 always reports:-
[04:52:40][==== IKE PHASE 1(from *.*.*.*) START (responder) ====]
[04:52:40]**** RECEIVED FIRST MESSAGE OF AGGR MODE ****
[04:52:40]<POLICY: > PAYLOADS: SA,PROP,TRANS,KE,NONCE,ID
[04:52:40]SENDING NOTIFY MSG:INVALID_ID_INFORMATION
[04:52:40]**** SENT OUT INFORMATIONAL EXCHANGE MESSAGE(NOTIFY_PAYLOAD) ****
Thus no VPN tunnel is created.
NB IP address was blanked for security reasons
I’ll list the configurations I have for both the 328 and VaporSec
328 Config
IKE config
Policy name: macremtest
Direction/type: Remote Access
Exchange Mode: Aggresive
Local ID: netgear
Remote ID: mac
Encrption Algo: 3DES
Auth Algo: MD5
Auth Method: Pre-shared key
DH Group:1
SA Lifetime 180secs
VPN config
Policy Name: macremtest
IKE policy: macremtest (matches the above IKE policy)
Remote VPN endpoint: 0.0.0.0
SA life Time: 300 secs
IPSec PFS: Not enabled
Local IP: Any
Remote IP: Any
AH Configuration: Not enabled
ESP Encryption: Enabled – DES
ESP Authentication: Enabled – MD5
VaporSec Config
Main
Shared Secret ************
Local IP: Blank
Mode: Aggressive
Proposal Check: Obey
Nonce size: 16
Phase1
Lifetime 180 secs
DH Group: 1
Encryption: 3des
Authentication: md5
Phase2
Lifetime 300 seconds
PFS Group: none
Encryption: des
Authentication: hmac_md5
ID
Local: mac
remote: netgear
Sorry about the length but, as I know, I’ll only get a solution if people can actually see my configuration. �Hopefully someone could shed some light on what’s going wrong, or, offer an alternative config
Incidently a demo copy of VPNtracker was able to hook in whithout problem so I’m sure it’s just a config issue with the VapourSec/328 combo
many thanks
Andy
.
.
Comments are closed