Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1358
Views
0
Helpful
1
Replies

Ipsec site-to-site AUTH_FAILED

Diego Maciel Gomes
Level 1
Level 1

‎01-21-2013 07:05 AM - edited ‎02-21-2020 06:38 PM

Hello All,

I have a VPN ipsec site-to-site with a partner running fine in my primary site..

Now, I made the same config with my backup site....

Im receiving this message in my log, look:

5 Jan 21 2013 11:29:57      713904      Group = 201.77.95.50, IP = 201.77.95.50, Received an un-encrypted AUTH_FAILED notify message, dropping

We did a doube check with shared-key, and this error doesnt correspond with shared key...

access-list outside_cryptomap line 1 extended permit ip host MY_IP host PARTNER_IP

vpn-tunnel-protocol ikev1

exit

tunnel-group PARTNER type ipsec-l2l

tunnel-group PARTNER general-attributes

default-group-policy DfltGrpPolicy

tunnel-group PARTNER ipsec-attributes

ikev1 pre-shared-key **********

isakmp keepalive threshold 10 retry 2

crypto map outside_map 1 match address outside_cryptomap

crypto map outside_map 1 set  peer  PARTNER

crypto map outside_map 1 set  ikev1 transform-set  ESP-3DES-MD5

Labels:
0 Helpful
1 Reply 1

Diego Maciel Gomes
Level 1
Level 1

‎01-21-2013 11:03 AM

Guys..

The problem was with my partner.... He said me the shared key was wrong.. But in the test log I received different message from shared key wrong..

Well.. It is working fine now..

thanks.

Diego

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents