Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
405
Views
0
Helpful
2
Replies

site-to-site VPN between a PIX515 and a SonicWall firewall

wdbrewster
Level 1
Level 1

‎09-13-2005 09:28 AM - edited ‎02-21-2020 01:57 PM

Hi,

I am trying to establish a site-to-site VPN connection between a Pix515 and SonicWall firewall. I am able to get a tunnel up using an 1841 integrated router with an ADSL interface with the same configuration as the PIX. The PIX has other tunnels to different locations with Cisco boxes up and running fine. The Pix connects to the internet via a 1721 router and 512kbps frame relay. Remote sites are connecting to the internet with DSL.

See attached debug for the problem I am getting.

Labels:
Preview file
6 KB
0 Helpful
2 Replies 2

gfullage
Cisco Employee
Cisco Employee

‎09-14-2005 06:12 PM

You're passing Phase 1 negotiation, then the PIX sends a config mode request to the SonicWall (SW) but doesn't receive any response. It tries a few more times then gives up and clears down what it has built.

I see you're actually doing Xauth and config-mode (trying to assign an IP address) to the SW, but you normally wouldn't do this for a L2L tunnel, and that may be why the SW is not responding. The logs off the SW would be handy.

Try turning off XAuth and mode config to the SW with the following:

isakmp key address netmask 255.255.255.255 no-xauth no-config-mode

You would normally do this for all L2L peers, it may be that the Cisco devices are just rejecting the requests and continuing on, whereas the SW is actually dropping the negotiation.

0 Helpful

wdbrewster
Level 1
Level 1
In response to gfullage

‎09-19-2005 05:03 AM

Thanks for your help. That was the problem.

0 Helpful
Customers Also Viewed These Support Documents