Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2300
Views
5
Helpful
3
Replies

"His hash no match - this node outside NAT" message in debug of IPSEC

CiscoPurpleBelt
Level 6
Level 6

‎02-26-2020 04:48 PM

Trying to T-shoot an IPSEC tunnel on a router where phase 1 will not come up. 

I see "His hash no match - this node outside NAT" in debugs however there is no natting done on the peer devices or devices in between to my knowledge. What exactly does this mean?

I also see "vendor ID seems Unity/DPD but major 0 mismatch vendor ID is DPD".

Any help?

0 Helpful
3 Replies 3

Cristian Matei
VIP Alumni
VIP Alumni

‎03-05-2020 11:49 AM

Hi,

 

 Ignore those messages (are just informational), and post the output of "debug crypto isakmp".

 

Regards,

Cristian Matei.

CiscoPurpleBelt
Level 6
Level 6
In response to Cristian Matei

‎03-05-2020 06:29 PM

Thanks!

Sorry its not possible to post on here, I can't get it unless I go to site. It shows its failing at MM1 message. Perhaps it is a reachability issue at this point from either traffic being blocked in between on transport or another reachability issue such as routing issues with transport?
0 Helpful

Cristian Matei
VIP Alumni
VIP Alumni
In response to CiscoPurpleBelt

‎03-06-2020 10:19 AM

Hi,

 

   Post output from both "debug crypto isakmp" and "debug crypto IPSec".

 

Regards,

Cristian Matei.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card