• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 803
  • Last Modified:

SonicWall Tele3/Cisco PIX 515e Site-to-Site VPN

I'm having a problem creating a site-to-site VPN connection between a SonicWall Tele3 and Cisco PIX 515e. The tunnel fails on Phase 2 negotiation - the SonicWall logs show "IKE Initiator Received notify NO_PROPOSAL_CHOSEN" and the Cisco logs show "Invalid Proposal". I'm hoping to find someone who has done this and can provide Cisco and SonicWall configurations.
  • 2
1 Solution
The Invalid Proposal at Phase 2 means that you don't have identical policies.
Check your policy setup on the PIX -example:

isakmp policy 5 authentication pre-share
isakmp policy 5 encryption 3des
isakmp policy 5 hash md5
isakmp policy 5 group 2
isakmp policy 5 lifetime 28800

And make sure on the SonicWall that you choose the same settings for authentication, encryption, hash, group setting and lifetime
Lifetime is the least important.  
How's it going? Have you found a solution? Do you need more information?
Can you close this question?


Thanks for attending to this long-forgotten question.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

WEBINAR: GDPR Implemented - Tips & Lessons Learned

Join the WatchGuard team on Thursday, March 29th as we recount some valuable lessons learned in weighing the needs of a business against the new regulatory environment, look ahead at the two months left before implementation, and help you understand the steps you can take today!

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now