Vpn site to site and ipsec problem
I have configured a ipsec's tunnel from a PIX 506 to a PIX 515E.
The version of software is 6.3.3
The settings on both pix's isakmp polices, transform-set, crypto-map are the same
but periodically the ipsec tunnel fails.
When the ipsec tunnel is down, the pix 515 reports the following error
ISAKMP: illegal udp len
while the pix 506 notices
IPSEC(validate_proposal): transform proposal (prot 3, trans 2, hmac_alg 1) not supported
ISAKMP (0): atts not acceptable. Next payload is 0
But the configuration on both pixs is not changed in fact ipsec tunnel goes online after few time,
without no change.
Does anyone know what the message (illegal udp len) relates too?
would very much appreciate anyone's help.
Many Thanks
B