Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
612
Views
0
Helpful
0
Replies

VPN connection between CISCO RV215W and Fortigate 80c

rares.serban
Level 1
Level 1

‎01-07-2015 09:47 AM

Hello everyone,

I am trying to setup a vpn connection between a RV215W with firmware 1.2.0.15 and a Fortigate 80c with v5.0, build 0271 (GA Patch 6).

Here is my topology:

RV215W - Phase1 - Exchange Mode: Main; Encryption Algorithm: AES-128 ; Auth Alg.:SHA-1; Group2; SA-lifetime:3600; DPD:Enable;DPD                                              Delay:10; DPD Timeout 30

                - Phase2 - Policy Type: Auto Policy; IP Address: 203.23.45.21; Local IP: 192.168.90.0/24; Remote IP:192.168.1.0/24; SA-Lifetime:28800;                                   Encryption Alg.:AES-128; Integrity Alg.:SHA-1; PFS Key Group:DH-Group 2; IKE Policy: Cisco-to-Fortigate;

Fortigate 80C

Phase1 IP Address 80.80.80.81

Phase 2

Source address: 192.168.1.0/24

Destination address: 192.168.90.0/24

The logs of RV215W show:

The logs of Fortinet show:

So, as you see, Fortinet is still negotiating and the packet is on the queue :

2015-01-07 18:30:59 ike 0:LAN-to-LAN:Ph2LAN-to-LAN-S2U: using existing connection
2015-01-07 18:30:59 ike 0:LAN-to-LAN:Ph2LAN-to-LAN-S2U: config found
2015-01-07 18:30:59 ike 0:LAN-to-LAN: request is on the queue

 

Why is blocked on this state? Any hint or help is appreciated.

R.

 

Labels:
0 Helpful
0 Replies 0
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents