Cisco 837 ipsec VPN to Watchguard Firebox
Posted on 2008-06-24
I look after a Cisco 837 router for one of my clients. It works perfectly, except recently i have been asked to set up a vpn to another office.
The other office is running a Watchguard Firebox, but i have no control over it and I have no access to it.
The details they have given me are as follows:
External ip address of the other site - 84.xxx.xxx.xxx
Internal ip address of the router - 192.168.0.1
Internal ip address range - 192.168.0.xxx
Security association proposal type - ESP
Authentication - SHA-HMAC
Encryption - 3DES-CBC
Preshared key - $xxxxxxx$
I thought I had set up the router correctly as in Cisco SDM it shows the connection as being up, although I can't ping anything at the other side, nor can I access a terminal server at the other site.
The only thing that I can see that i have done differently is use 3DES encryption instead of 3DES-CBC encryption - are they the same thing?
If anyone could shed any light it would be much appreciated. I am happy to post config files if they will be of assistance?