NetScreen VPN Client errors
ns-5XP, Netscreen remote v8.3.
on Netscreen:
"Rejected an initial Phase 1 packet from an unrecognized peer gateway."
Client keeps retransmitting.
This was due to a space character after the email address (id) being used on client. so the server didn't recognize it.
Now, get on ns: (logs chronological from bottom)
client gets:
peer is nat-t draft compatible
nat is detected for client
hash payload is incorrect
sending blah blah incorrect NOTIFY:INVALID_HASH_INFO
Discarding IKE SA negotiation
my cookie is...
his cookie is...
RECEIVED blah blah
Received message for non-active SA.
on Netscreen:
"Rejected an initial Phase 1 packet from an unrecognized peer gateway."
Client keeps retransmitting.
This was due to a space character after the email address (id) being used on client. so the server didn't recognize it.
Now, get on ns: (logs chronological from bottom)
| 2005-02-04 9:25:29 | info | IKE<2.3.9.9> Phase 1: Retransmission limit has been reached. |
| 2005-02-04 9:24:41 | info | IKE<2.3.9.9> Phase 1: Responder starts AGGRESSIVE mode negotiations. |
peer is nat-t draft compatible
nat is detected for client
hash payload is incorrect
sending blah blah incorrect NOTIFY:INVALID_HASH_INFO
Discarding IKE SA negotiation
my cookie is...
his cookie is...
RECEIVED blah blah
Received message for non-active SA.
posted by Keith Salustro at 8:34 PM
0 comments
