Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1376
Views
5
Helpful
2
Replies

RV340 VPN Setup

Go to solution
JongSungPark94400
Level 1
Level 1

‎02-25-2020 12:58 AM

Hi. 

I'm trying to setup a site to site vpn through RV340 Router.

 

Here is my configuration

  1. Router is default state. and I only add a VPN.

  2. IPSec profile : IKEv2

image.png

 

 

 

 

 

 

Here is logs.

2020-02-25T17:05:26+09:00 <info>charon: 07[IKE] received AUTHENTICATION_FAILED notify error
2020-02-25T17:05:26+09:00 <info>charon: 07[ENC] parsed IKE_AUTH response 2 [ N(AUTH_FAILED) ]
2020-02-25T17:05:26+09:00 <info>charon: 07[NET] received packet: from 218.155.23.212[500] to 211.34.60.91[500] (68 bytes)
2020-02-25T17:05:26+09:00 <info>charon: 10[NET] sending packet: from 211.34.60.91[500] to 218.155.23.212[500] (68 bytes)
2020-02-25T17:05:26+09:00 <info>charon: 10[ENC] generating IKE_AUTH request 2 [ IDi ]
2020-02-25T17:05:26+09:00 <info>charon: 10[IKE] IKE_AUTH task
2020-02-25T17:05:26+09:00 <info>charon: 10[IKE] IKE_CERT_PRE task
2020-02-25T17:05:26+09:00 <info>charon: 10[IKE] reinitiating already active tasks
2020-02-25T17:05:26+09:00 <info>charon: 10[IKE] authentication of '218.155.23.212' with pre-shared key successful
2020-02-25T17:05:26+09:00 <info>charon: 10[IKE] received ANOTHER_AUTH_FOLLOWS notify
2020-02-25T17:05:26+09:00 <info>charon: 10[ENC] parsed IKE_AUTH response 1 [ IDr AUTH N(AUTH_FOLLOWS) ]
2020-02-25T17:05:26+09:00 <info>charon: 10[NET] received packet: from 218.155.23.212[500] to 211.34.60.91[500] (100 bytes)
2020-02-25T17:05:26+09:00 <info>charon: 14[NET] sending packet: from 211.34.60.91[500] to 218.155.23.212[500] (228 bytes)
2020-02-25T17:05:26+09:00 <info>charon: 14[ENC] generating IKE_AUTH request 1 [ IDi N(INIT_CONTACT) IDr AUTH SA TSi TSr N(MULT_AUTH) N(EAP_ONLY) N(AUTH_FOLLOWS) ]
2020-02-25T17:05:26+09:00 <info>charon: Last message '14[IKE] establishing' repeated 1 times, supressed by syslog-ng on router794083
2020-02-25T17:05:26+09:00 <info>charon: 14[IKE] establishing CHILD_SA s2s_TestJSP
2020-02-25T17:05:26+09:00 <info>charon: 14[IKE] ezvpn create_attribute_enumerator
2020-02-25T17:05:26+09:00 <info>charon: 14[IKE] successfully created shared key MAC
2020-02-25T17:05:26+09:00 <info>charon: 14[IKE] authentication of '211.34.60.91' (myself) with pre-shared key
2020-02-25T17:05:26+09:00 <info>charon: 14[IKE] IKE_AUTH task
2020-02-25T17:05:26+09:00 <info>charon: 14[IKE] IKE_CERT_PRE task
2020-02-25T17:05:26+09:00 <info>charon: 14[IKE] reinitiating already active tasks
2020-02-25T17:05:26+09:00 <info>charon: 14[IKE] received SIGNATURE_HASH_ALGORITHMS notify
2020-02-25T17:05:26+09:00 <info>charon: 14[IKE] received FRAGMENTATION_SUPPORTED notify
2020-02-25T17:05:26+09:00 <info>charon: 14[ENC] parsed IKE_SA_INIT response 0 [ SA KE No N(NATD_S_IP) N(NATD_D_IP) N(FRAG_SUP) N(HASH_ALG) N(MULT_AUTH) ]
2020-02-25T17:05:26+09:00 <info>charon: 14[NET] received packet: from 218.155.23.212[500] to 211.34.60.91[500] (332 bytes)
2020-02-25T17:05:26+09:00 <info>charon: 08[NET] sending packet: from 211.34.60.91[500] to 218.155.23.212[500] (528 bytes)
2020-02-25T17:05:26+09:00 <info>charon: 08[ENC] generating IKE_SA_INIT request 0 [ SA KE No N(NATD_S_IP) N(NATD_D_IP) N(FRAG_SUP) N(HASH_ALG) N(REDIR_SUP) ]
2020-02-25T17:05:26+09:00 <info>charon: 08[IKE] IKE_SA s2s_TestJSP[51] state change: CREATED => CONNECTING
2020-02-25T17:05:26+09:00 <info>charon: Last message '08[IKE] initiating I' repeated 1 times, supressed by syslog-ng on router794083
2020-02-25T17:05:26+09:00 <info>charon: 08[IKE] initiating IKE_SA s2s_TestJSP[51] to 218.155.23.212
2020-02-25T17:05:26+09:00 <info>charon: 08[IKE] activating IKE_AUTH_LIFETIME task
2020-02-25T17:05:26+09:00 <info>charon: 08[IKE] activating CHILD_CREATE task
2020-02-25T17:05:26+09:00 <info>charon: 08[IKE] activating IKE_CONFIG task
2020-02-25T17:05:26+09:00 <info>charon: 08[IKE] activating IKE_CERT_POST task
2020-02-25T17:05:26+09:00 <info>charon: 08[IKE] activating IKE_AUTH task
2020-02-25T17:05:26+09:00 <info>charon: 08[IKE] activating IKE_CERT_PRE task
2020-02-25T17:05:26+09:00 <info>charon: 08[IKE] activating IKE_NATD task
2020-02-25T17:05:26+09:00 <info>charon: 08[IKE] activating IKE_INIT task
2020-02-25T17:05:26+09:00 <info>charon: 08[IKE] activating IKE_VENDOR task
2020-02-25T17:05:26+09:00 <info>charon: 08[IKE] activating new tasks
2020-02-25T17:05:26+09:00 <info>charon: 08[IKE] queueing CHILD_CREATE task
2020-02-25T17:05:26+09:00 <info>charon: 08[IKE] queueing IKE_AUTH_LIFETIME task
2020-02-25T17:05:26+09:00 <info>charon: 08[IKE] queueing IKE_CONFIG task
2020-02-25T17:05:26+09:00 <info>charon: 08[IKE] queueing IKE_CERT_POST task
2020-02-25T17:05:26+09:00 <info>charon: 08[IKE] queueing IKE_AUTH task
2020-02-25T17:05:26+09:00 <info>charon: 08[IKE] queueing IKE_CERT_PRE task
2020-02-25T17:05:26+09:00 <info>charon: 08[IKE] queueing IKE_NATD task
2020-02-25T17:05:26+09:00 <info>charon: 08[IKE] queueing IKE_INIT task
2020-02-25T17:05:26+09:00 <info>charon: 08[IKE] queueing IKE_VENDOR task
2020-02-25T17:05:26+09:00 <info>charon: 15[CFG] received stroke: initiate 's2s_TestJSP'
2020-02-25T17:05:26+09:00 <notice>VPN-cfg: Bringing UP connection:s2s_TestJSP

 

I don't know why this error occurs.

Thank you....

 

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame

‎02-25-2020 02:27 AM

check the config both the side :

 

below logs show some errors :

 

2020-02-25T17:05:26+09:00 <info>charon: 07[IKE] received AUTHENTICATION_FAILED notify error
2020-02-25T17:05:26+09:00 <info>charon: 07[ENC] parsed IKE_AUTH response 2 [ N(AUTH_FAILED) ]

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

View solution in original post

2 Replies 2

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame

‎02-25-2020 02:27 AM

check the config both the side :

 

below logs show some errors :

 

2020-02-25T17:05:26+09:00 <info>charon: 07[IKE] received AUTHENTICATION_FAILED notify error
2020-02-25T17:05:26+09:00 <info>charon: 07[ENC] parsed IKE_AUTH response 2 [ N(AUTH_FAILED) ]

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

Go to solution
JongSungPark94400
Level 1
Level 1
In response to balaji.bandi

‎02-25-2020 05:03 AM

both configs are :

Site A                                            Site B

   Name : Testjsp                            Testvpn

   IP   

       local  211.34.60.91                218.155.23.212

       Remote 218.155.23.212        211.34.60.91

       

       local 10.20.20.2                     10.20.20.1

       Remote 10.20.20.1                10.20.20.2

   Profile : IKEv2                              IKEv2                (Profile created with the same options)

   pre-shared key : 

       local : test2456                       test1234

       Remote : test1234                  test2456

 

I think it's well set up. What's the problem?

   

0 Helpful
Customers Also Viewed These Support Documents