DrayTek UK Users' Community Forum

Help, Advice and Solutions from DrayTek Users

Cisco ASA<---->Draytek Vigor 3300 VPN Debug

  • thirst4knowledge
  • Topic Author
  • Offline
  • Junior Member
  • Junior Member
More
06 Feb 2010 14:33 #60393 by thirst4knowledge
Cisco ASA<---->Draytek Vigor 3300 VPN Debug was created by thirst4knowledge
Hi Guys,

After having finally manged to get the wan and load balancing up I moved onto creating a site to site vpn to our corporate firewall which is a Cisco ASA .

When I complete the set-up at both ends the tunnel dose not come up and I revive messages on my ASA debug log of:


5 Feb 06 2010 14:25:49 713904 Group = x.x.x.46, IP = x.x.x.46, Received encrypted Oakley Main Mode packet with invalid payloads, MessID = 0

3 Feb 06 2010 14:26:14 713902 Group = x.x.x.46, IP = x.x.x.46, Removing peer from peer table failed, no match!

6 Feb 06 2010 14:27:04 713905 Group = x.x.x.46, IP = x.x.x.46, P1 Retransmit msg dispatched to MM FSM

anybody have some experience with getting these two to talk ?

I have successfully managed to create over 100 VPN tunnels using other models of draytek Vigors(ranging from 2600 to 2900's) to the ASA with no problem but for some reason the 3300 is giving me problems. I notice that I cant give a Peer ID in the dratek options and that the "Remote ID:" option in the remote ID section of the VPN menu is greyed out.

Please Log in or Create an account to join the conversation.

Moderators: Sami