MUVPN Users are unable to log on.
Posted on 2008-06-18
Having trouble setting up muvpn users on our new Watchguard Firebox. I have tried contacting Watchguard tech support but they never seem to call me during an appropriate time. Any help would be appreciated. Here is hat I have done so far.
Step 1: I first setup the Authentication Server. I am using Active Directory for authentication. My settings are as follows:
IP Address: 100.100.100.5 (Domain controller)
Search Base: ou=SBSUsers,ou=Users,ou=MyBusiness,dc=miamicpas,dc=local (This is the active directory ou where all the users reside on the domain controller, SBS 2003)
Group string: memberOf
Login Attribute: sMAccountName
DeadTime: 10 minutes
Step 2: I created a mobile user vpn group. Under VPN, Remote Users. These are the settings that I created.
Group name is: SBSUsers
Authentication Server: Active Directory
Allowed Access: 100.100.100.0/24 (IP Scheme of internal network)
Virtual IP Address Pool: 100.100.100.125 - 100.100.100.130 (Reserved address pool for vpn users on DC)
Key Negotian Type: pre-shared key
Key Exp: 128000KB or 8 hours
Encr: AES (256 bit)
At this point the mobile user vpn policy is automatically created allowing all ports open for this specific user group. I went ahead and exported the profile o a laptop which had the muvpn software installed. Imported the profile which was successful and tried logging on using an aircard. I keep getting the error IKE Error phase 1, lost connection to peer. This is where I am stuck.
I apologize with the long message, but I wanted to give all the details possible. I hope someone can help.