Hello,

someone can help please.

I try to establish an IPSEC tunnel towards a Barracuda but so far no success. I can not send any data in the tunnel. They are all dropped

Inbound: #pkts dec'ed 0 drop 0 life (KB/Sec) 0/0
Outbound: #pkts enc'ed 0 drop 288 life (KB/Sec) 0/0

I get following debug result:

Log Buffer (4096 bytes):

Mar 24 18:08:55.734: ISAKMP: (0):retransmitting phase 1 MM_SA_SETUP...
Mar 24 18:08:55.734: ISAKMP: (0):: incrementing error counter on sa, attempt 3 of 5: retransmit phase 1
Mar 24 18:08:55.734: ISAKMP: (0):retransmitting phase 1 MM_SA_SETUP
Mar 24 18:08:55.734: ISAKMP-PAK: (0):sending packet to 212.152.177.234 my_port 500 peer_port 500 (R) MM_SA_SETUP
Mar 24 18:08:55.734: ISAKMP: (0):Sending an IKE IPv4 Packet.
Mar 24 18:08:55.734: ISAKMP: (0):retransmitting phase 1 MM_SA_SETUP...
Mar 24 18:08:55.734: ISAKMP: (0):: incrementing error counter on sa, attempt 1 of 5: retransmit phase 1
Mar 24 18:08:55.734: ISAKMP: (0):retransmitting phase 1 MM_SA_SETUP
Mar 24 18:08:55.734: ISAKMP-PAK: (0):sending packet to 212.152.177.234 my_port 500 peer_port 500 (R) MM_SA_SETUP
Mar 24 18:08:55.734: ISAKMP: (0):Sending an IKE IPv4 Packet.
Mar 24 18:08:55.734: IPSec: Key engine got a KEY_MGR_CHECK_MORE_SAS message
Mar 24 18:08:55.734: ISAKMP (0): IPSec has no more SA's with this peer. Won't keepalive phase 1.
Mar 24 18:08:55.734: ISAKMP: (0):constructed NAT-T vendor-rfc3947 ID
Mar 24 18:08:55.734: ISAKMP-PAK: (0):sending packet to 212.152.177.234 my_port 500 peer_port 500 (R) MM_SA_SETUP
Mar 24 18:08:55.734: ISAKMP: (0):Sending an IKE IPv4 Packet.
Mar 24 18:08:55.735: ISAKMP: (0):Input = IKE_MESG_INTERNAL, IKE_PROCESS_COMPLETE
Mar 24 18:08:55.735: ISAKMP: (0):Old State = IKE_R_MM1 New State = IKE_R_MM2

Mar 24 18:08:55.743: ISAKMP: (0):retransmitting phase 1 MM_SA_SETUP...
Mar 24 18:08:55.743: ISAKMP: (0):: incrementing error counter on sa, attempt 2 of 5: retransmit phase 1
Mar 24 18:08:55.743: ISAKMP: (0):retransmitting phase 1 MM_SA_SETUP
Mar 24 18:08:55.743: ISAKMP-PAK: (0):sending packet to 212.152.177.234 my_port 500 peer_port 500 (R) MM_SA_SETUP
Mar 24 18:08:55.743: ISAKMP: (0):Sending an IKE IPv4 Packet.
Mar 24 18:08:55.743: ISAKMP: (0):retransmitting phase 1 MM_SA_SETUP...
Mar 24 18:08:55.743: ISAKMP: (0):: incrementing error counter on sa, attempt 4 of 5: retransmit phase 1
Mar 24 18:08:55.743: ISAKMP: (0):retransmitting phase 1 MM_SA_SETUP
Mar 24 18:08:55.743: ISAKMP-PAK: (0):sending packet to 212.152.177.234 my_port 500 peer_port 500 (R) MM_SA_SETUP
Mar 24 18:08:55.743: ISAKMP: (0):Sending an IKE IPv4 Packet.
Mar 24 18:08:55.744: ISAKMP-ERROR: (0):deleting SA reason "Death by retransmission P1" state (R) MM_SA_SETUP (peer 212.152.177.234)
Mar 24 18:08:55.744: ISAKMP: (0):Deleting the unauthenticated sa
Mar 24 18:08:55.745: ISAKMP: (0):Unlocking peer struct 0x80007F809FD7DB08 for isadb_mark_sa_deleted(), count 0
Mar 24 18:08:55.745: ISAKMP: (0):Deleting the peer struct for unauthenticated sa
Mar 24 18:08:55.745: ISAKMP: (0):Deleting peer node by peer_reap for 212.152.177.234: 80007F809FD7DB08
Mar 24 18:08:55.745: ISAKMP: (0):Input = IKE_MESG_INTERNAL, IKE_PHASE1_DEL
Mar 24 18:08:55.745: ISAKMP: (0):Old State = IKE_R_MM2 New State = IKE_DEST_SA

Mar 24 18:08:55.882 MEZ: %FMANFP-6-IPACCESSLOGP: R0/0: fman_fp_image: list VPNACL_IN denied tcp 91.132.58.17(54681) -> 194.24.131.50(3030), 1 packet
Mar 24 18:08:56.496: ISAKMP: (0):retransmitting phase 1 MM_NO_STATE...
Mar 24 18:08:56.496: ISAKMP: (0):peer does not do paranoid keepalives.
Mar 24 18:08:56.496: ISAKMP-ERROR: (0):deleting SA reason "Death by retransmission P1" state (I) MM_NO_STATE (peer 212.152.177.234)
Mar 24 18:08:56.496: ISAKMP-ERROR: (0):deleting SA reason "Death by retransmission P1" state (I) MM_NO_STATE (peer 212.152.177.234)
Mar 24 18:08:56.496: ISAKMP: (0):Unlocking peer struct 0x80007F809AA41C00 for isadb_mark_sa_deleted(), count 0
Mar 24 18:08:56.496: ISAKMP: (0):Deleting peer node by peer_reap for 212.152.177.234: 80007F809AA41C00
Mar 24 18:08:56.497: ISAKMP: (0):deleting node 434387125 error FALSE reason "IKE deleted"
Mar 24 18:08:56.497: ISAKMP: (0):deleting node 708602397 error FALSE reason "IKE deleted"
Mar 24 18:08:56.497: ISAKMP: (0):deleting node 1548226412 error FALSE reason "IKE deleted"
Mar 24 18:08:56.497: ISAKMP: (0):Input = IKE_MESG_INTERNAL, IKE_PHASE1_DEL
.738: ISAKMP: (0):retransmitting phase 1 MM_SA_SETUP...
Mar 24 18:09:05.738: ISAK

thanks in advance, Selcuk