Netscreen 5GT vs. Symantec Enterprise Firewall 7.04
Last response: in Networking
Archived from groups: comp.dcom.vpn (More info?)
Hi there...
Having problems with connecting a Netscreen 5GT to a SEF (Symantec
Enterprise Firewall).
Phase 1 is going correctly (either main or aggressive mode), but Phase 2
gives an error
IKE<xxx.xxx.xxx.xxx>: Received a notification message for DOI <1> <18>
<INVALID_ID_INFO>
SYN Flood is disabled at both sides...
Local site (Netscreen 5GT):
192.168.75.0/24 (Private) and 80.127.xxx.xxx/32 public
Tunnel and policy (bi-directional created for full access) created
Remote site (SEF 7.04):
192.6.181.0/24 (private) and 194.151.xxx.xxx/32 public
Please help
Please HELP........
Hi there...
Having problems with connecting a Netscreen 5GT to a SEF (Symantec
Enterprise Firewall).
Phase 1 is going correctly (either main or aggressive mode), but Phase 2
gives an error
IKE<xxx.xxx.xxx.xxx>: Received a notification message for DOI <1> <18>
<INVALID_ID_INFO>
SYN Flood is disabled at both sides...
Local site (Netscreen 5GT):
192.168.75.0/24 (Private) and 80.127.xxx.xxx/32 public
Tunnel and policy (bi-directional created for full access) created
Remote site (SEF 7.04):
192.6.181.0/24 (private) and 194.151.xxx.xxx/32 public
Please help
Please HELP........
More about : netscreen 5gt symantec enterprise firewall
Archived from groups: comp.dcom.vpn (More info?)
[...]
> IKE<xxx.xxx.xxx.xxx>: Received a notification message for DOI <1> <18>
> <INVALID_ID_INFO>
>
>
> SYN Flood is disabled at both sides...
>
> Local site (Netscreen 5GT):
> 192.168.75.0/24 (Private) and 80.127.xxx.xxx/32 public
> Tunnel and policy (bi-directional created for full access) created
>
> Remote site (SEF 7.04):
> 192.6.181.0/24 (private) and 194.151.xxx.xxx/32 public
>
So, you should debug phase II then....
[...]
[...]
> IKE<xxx.xxx.xxx.xxx>: Received a notification message for DOI <1> <18>
> <INVALID_ID_INFO>
>
>
> SYN Flood is disabled at both sides...
>
> Local site (Netscreen 5GT):
> 192.168.75.0/24 (Private) and 80.127.xxx.xxx/32 public
> Tunnel and policy (bi-directional created for full access) created
>
> Remote site (SEF 7.04):
> 192.6.181.0/24 (private) and 194.151.xxx.xxx/32 public
>
So, you should debug phase II then....
[...]
Related ressources:
- ForumHow to setup a 1GB Gigabyte Network
- ForumPorts to open to the firewall (Hide Nat, Cisco VPN)
- ForumRouting problem over VPN from Vigor 2600+ to Netscreen 5GT
- ForumNEED HELP: Simple VPN from XP to Netscreen 5GT
- ForumVPN and XP Firewall issues
- ForumL2TP/IPSec and NAT with 3Com Superstack 3 Firewall?
- ForumProblem with BEFVP41 -> NetScreen 5GT
- ForumProblem with tunnels when connecting Symantec Enterprise V..
- ForumNetscreen support experience?
- ForumConnect to BEFVP41 from XP behind Checkpoint Firewall
- More resources
Read discussions in other Networking categories
!
