	[x] Posted via EE Mobile
	Search, ask, and monitor your questions on the go with EE Mobile. Visit Experts Exchange from your mobile device and never be out of touch again.

10/24/2009 at 06:05PM PDT, ID: 24841183 | Points: 500

	[x] Attachment Details

VPN Tunnel "No Proposal Chosen" error

Asked by boblzer0 in Virtual Private Networking (VPN), Watchguard Firewall, IPSec Security Protocol

Tags: vpn, firebox, ipsec

Just upgraded a firebox x700 from WSF7.5 to WSM9 with Fireware. VPN tunnels (ipsec) that previously worked before the upgrade are now not connecting.

Network is setup in Hub/Spoke design. The hub is 192.168.1.0/24 and is a Watchguard Firebox X700 running Fireware 9.0. The first spoke that I am having issue with is a SonicWall TZ 170 at 192.168.8.0/21. This VPN tunnel worked before we upgraded the firmware on the Hub device. I am apparently missing something in re-inputting the config that is preventing it from working. Please see code below for error from log. All settings are matched up to what they were before the firmware upgrade. Any ideas of what I'm missing?

View the Solution FREE for 30 Days

         
             2009-10-24 20:59:14 Deny 192.168.1.222 192.168.10.15 icmp-Echo 1-Trusted Intercare/IPsec  SA deleted or negotiation failed, firewall drop  (Ping-00)  
2009-10-24 20:59:14 iked Starting phase 2 to 173.10.41.108:500 quick mode message(id f998a557)  
2009-10-24 20:59:14 iked The Firebox received this error (No Proposal Chosen) from 173.10.41.108:500

Keywords: VPN Tunnel "No Proposal Chosen" e…

	Title
1	Samba over vpn ipsec tunnel
2	VPN Setup on a firebox X55e
3	VPN issue using Watchguard Firebox …
4	VPN Problems
5	Simple Inexpensive VPN
6	Create a VPN between Watchguard x…

Loading Advertisement...

20090824-EE-VQP-74 - Hierarchy / EE_QW_3_20080625

1. dpk_wal219,025
2. ljones_cna22,732
3. jmlamb12,700
4. RobWill6,000
5. arnold5,250
6. bzumwalt3,500
6. Rick_O_...3,500
8. Qlemo3,002
9. jodylemoine3,000
10. FrankThe...2,668
11. ahoffmann2,500
11. MikeKane2,500
13. ikalmar2,250
14. Mestha2,200
15. uetian17072,100
16. Gns2,000
16. htam2,000
16. SysExpert2,000
16. ged3252,000
16. Akhater2,000
16. Pber2,000
16. mutahir2,000
16. Bembi2,000
16. dalesit2,000
16. dpetr002,000
16. Sembee2,000
16. MrMander...2,000
16. aZLAn2...2,000
16. StephenJD2,000
16. quinnjudge2,000
16. itsmein2,000
16. SheaDigital2,000
16. ngailfus2,000
16. GTPD222,000
16. thaug2,000
16. hodgeyohn2,000
16. tdd972,000
16. andeporter2,000
16. bignewf2,000
16. Kaffiend2,000
16. blue-scr...2,000
16. thetmanvn2,000
16. EndureKona2,000
16. Phateon2,000
16. 172pilot...2,000
16. uayneb2,000
16. supermarko2,000

1. dpk_wal588,015
2. RobWill46,150
3. hstiles31,400
4. ljones_cna22,732
5. supportsoft15,550
6. jmlamb12,700
7. cv790...11,550
8. mcrossland10,272
9. Zenat10,200
10. bzumwalt10,000
11. arnold9,750
12. lrmoore8,565
13. Sembee8,500
14. fendermb48,175
15. tim_holman7,920
16. tmehmet7,850
17. samccarthy7,200
18. NetAdmin...6,552
19. giltjr6,250
20. keith_ala...6,000
20. MrHusy6,000
22. uetian17075,575
23. charan_j...5,000
24. from_exp4,975
25. Phil_Agc...4,750