	[x] Posted via EE Mobile
	Search, ask, and monitor your questions on the go with EE Mobile. Visit Experts Exchange from your mobile device and never be out of touch again.

Question

	[x] Attachment Details

SonicWALL TZ 210 to TZ 170 - VPN will not establish

Asked by camwyncwru in Networking Hardware Firewalls

Tags: SonicWALL, VPN

I am attempting to create a site-to-site VPN between two SonicWALL devices in my organization. One is a TZ 210, the other a TZ170. I cannot seem to get a live tunnel between the two sites. Here are the errors in our TZ 210's log when it tries to raise the tunnel:

11/04/2009 11:41:14.720 - Info - VPN IKE -       IKE negotiation aborted due to timeout -       XX.104.42.126, 500 -       XX.244.98.165, 500 -       VPN Policy: Local Site to Remote Site
11/04/2009 11:41:23.000 - Info - VPN IKE -       IKE Initiator: Start Main Mode negotiation (Phase 1) -       XX.104.42.126, 500 -       XX.244.98.165, 500 -       VPN Policy: Local Site to Remote Site
11/04/2009 11:41:23.272 - Info - VPN IKE -       NAT Discovery : No NAT/NAPT device detected between IPSec Security gateways -       XX.104.42.126, 500 -       XX.244.98.165, 500 -       VPN Policy: Local Site to Remote Site
11/04/2009 11:41:29.720 - Info - VPN IKE -       IKE Initiator: Remote party timeout - Retransmitting IKE request. -       XX.104.42.126, 500 -       XX.244.98.165, 500 -       VPN Policy: Local Site to Remote Site
11/04/2009 11:41:29.720 - Warning - VPN IKE -       Received unencrypted packet in crypto active state -       XX.244.98.165, 500 -       XX.104.42.126, 500 -       VPN Policy: Local Site to Remote Site
11/04/2009 11:41:29.720 - Info - VPN IKE -       Received notify: INVALID_COOKIES -       XX.104.42.126, 500 -       XX.244.98.165, 500 -       VPN Policy: Local Site to Remote Site
11/04/2009 11:41:39.944 - Info - VPN IKE -       IKE Responder: Received Main Mode request (Phase 1) -       XX.244.98.165, 500 -       XX.104.42.126, 500 -
11/04/2009 11:41:40.224 - Warning - VPN IKE -       IKE Responder: Proposed IKE ID mismatch -       XX.244.98.165, 500 -       XX.104.42.126, 500 -       VPN Policy: Local Site to Remote Site; Local ID type: USER FQDN; Remote ID type: IP Address
11/04/2009 11:41:41.720 - Info - VPN IKE -       IKE Initiator: Remote party timeout - Retransmitting IKE request. -       XX.104.42.126, 500 -       XX.244.98.165, 500 -       VPN Policy: Local Site to Remote Site
11/04/2009 11:41:41.720 - Warning - VPN IKE -       Received unencrypted packet in crypto active state -       XX.244.98.165, 500 -       XX.104.42.126, 500 -       VPN Policy: Local Site to Remote Site
11/04/2009 11:41:41.720 - Info - VPN IKE -       Received notify: INVALID_COOKIES -       XX.104.42.126, 500 -       XX.244.98.165, 500 -       VPN Policy: Local Site to Remote Site
11/04/2009 11:41:57.256 - Notice - Network Access -       Web management request allowed -       XX.168.0.103, 4814, X0 (admin) -       XX.168.103.1, 8888, X0 -       TCP HTTP Management
11/04/2009 11:41:59.720 - Info - VPN IKE -       IKE Initiator: Remote party timeout - Retransmitting IKE request. -       XX.104.42.126, 500 -       XX.244.98.165, 500 -       VPN Policy: Local Site to Remote Site
11/04/2009 11:41:59.720 - Warning - VPN IKE -       Received unencrypted packet in crypto active state -       XX.244.98.165, 500 -       XX.104.42.126, 500 -       VPN Policy: Local Site to Remote Site
11/04/2009 11:41:59.720 - Info - VPN IKE -       Received notify: INVALID_COOKIES -       XX.104.42.126, 500 -       XX.244.98.165, 500 -       VPN Policy: Local Site to Remote Site
11/04/2009 11:42:33.720 - Info - VPN IKE -       IKE negotiation aborted due to timeout -       XX.104.42.126, 500 -       XX.244.98.165, 500 -       VPN Policy: Local Site to Remote Site

View the Solution FREE for 30 Days

20091021-EE-VQP-81 - Hierarchy / EE_QW_3_20080625

Hall of Fame

1. JFrederic...297,897
2. dpk_wal193,476
3. lrmoore161,519
4. ccomley129,179
5. 3nerds127,950
6. ikalmar126,061
7. MikeKane125,898
8. kenboonejr82,375
9. rsivanandan61,654
10. sangamc58,732
11. bignewf57,701
12. Qlemo55,902
13. deimark52,350
14. asavener50,645
15. stsonline50,575
16. rochey2...50,250
17. uetian170742,279
18. RobWill40,834
19. jodylemoine39,020
20. that1guy1538,762
21. nodisco37,800
22. PeteLong37,050
23. harbor23535,405
24. arnold33,871
25. equalizer33,150

1. lrmoore1,423,270
2. JFrederic...507,441
3. batry_boy488,895
4. RobWill455,233
5. dpk_wal448,133
6. rsivanandan326,996
7. harbor235212,034
8. ccomley171,466
9. MikeKane153,388
10. PeteLong136,731
11. 3nerds127,950
12. ikalmar126,061
13. nodisco124,822
14. grblades123,979
15. Cyclops3...116,570
16. giltjr110,457
17. MrHusy98,341
18. pseudocy...90,643
19. Voltz-dk87,658
20. RPPreacher86,116
21. arnold85,917
22. kenboonejr82,375
23. Qlemo77,869
24. calvinetter76,413
25. donjohnston76,205