Symantec Security Gateway 320 Can't get VPN working

Posted on 2006-04-09
Medium Priority
Last Modified: 2012-05-05
I have followed the steps outlined in the admin guide and I have configured the client the same way. I keep getting the following error on the client. I do see a log entry indicatign the client can see the firewall.

Client log entries
4/9/2006 8:32:02 AM emapi Connecting security gateway x.x.x.x
4/9/2006 8:32:02 AM emapi Retrieving configuration for gateway x.x.x.x
4/9/2006 8:33:25 AM isakmpd 343 WARNING: Retry limit reached for the remote security gateway,      Program Name=isakmpd,      Operation=Connect,      Resource=,      Status=Failure,      State=Connecting
4/9/2006 8:33:25 AM Symantec Client VPN 610 CRITICAL: Communications with the ISAKMP daemon failed.,      Program Name=emapi
4/9/2006 8:33:25 AM emapi Error enabling tunnel. The server rejected the ISAKMP security association. Make sure the phase1 IDs, shared key, and IKE policy are correct. Please see logfile for details.
4/9/2006 8:33:25 AM emapi Error connecting tunnel to x.x.x.x. The server rejected the ISAKMP security association. Make sure the phase1 IDs, shared key, and IKE policy are correct. Terminating connect operation.

I am in a bind and really need to get this working. Max points to who every can help ASAP.
Question by:DonorAlliance

Accepted Solution

Akhmal earned 1000 total points
ID: 16416268
Hello there,

From another website. Which seems to be the same problem as yours. It may give you some ideas.

Author Comment

ID: 16417471
Thanks for the responce. Come to find out the DSL modem does not support IPsec pass through. Moved to a PPTP VPN.


Featured Post

Upgrade your Question Security!

Your question, your audience. Choose who sees your identity—and your question—with question security.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

To setup a SonicWALL for policy based routing to be used with the Websense Content Gateway there are several steps that need to be completed. Below is a rough guide for accomplishing this. One thing of note is this guide is intended to assist in the…
The DROP (Spamhaus Don't Route Or Peer List) is a small list of IP address ranges that have been stolen or hijacked from their rightful owners. The DROP list is not a DNS based list.  It is designed to be downloaded as a file, with primary intention…
Loops Section Overview
When cloud platforms entered the scene, users and companies jumped on board to take advantage of the many benefits, like the ability to work and connect with company information from various locations. What many didn't foresee was the increased risk…
Suggested Courses

579 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question