Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
364
Views
0
Helpful
3
Replies

Pix 501 VPN question

johnroche_2
Level 1
Level 1

‎02-06-2008 12:05 PM - edited ‎03-11-2019 04:59 AM

Hi

I have two pix 502 firewalls with an IPSEC L2L tunnel between them. The L2L tunnel establishes and is working fine. I added the dynamic VPN for road warriors to connect in but I get the following error

IPSEC(validate_transform_proposal): invalid local address 89.19.83.212

IPSEC(validate_proposal): transform proposal (prot 3, trans 3, hmac_alg 2) not s

upported

Anyone got any ideas

john

Labels:
0 Helpful
3 Replies 3

Alan Huseyin Kayahan
Level 7
Level 7

‎02-06-2008 12:56 PM

Hi John

Please attach your config

Regards

0 Helpful

johnroche_2
Level 1
Level 1
In response to Alan Huseyin Kayahan

‎02-06-2008 01:21 PM

config attached as requested

Preview file
4 KB
0 Helpful

Alan Huseyin Kayahan
Level 7
Level 7
In response to johnroche_2

‎02-06-2008 01:54 PM

Try this

crypto ipsec transform-set ESP-3DES-SHA esp-3des esp-md5-sha

clear config crypto dynamic-map outside_dyn_map 20

crypto dynamic-map outside_dyn_map 10 set transform-set ESP-3DES-SHA

crypto dynamic-map outside_dyn_map 10 match address outside_cryptomap_dyn_20

isakmp policy 10 authentication pre-share isakmp policy 10 encryption 3des

isakmp policy 10 hash sha

isakmp policy 10 group 2

isakmp policy 10 lifetime 86400

run clear xlate to reset current translations (internet and connections will be down for a second) then try again.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card