Solved

cisco and Draytek VPN Problem

Posted on 2009-07-09
5
1,779 Views
Last Modified: 2012-06-27
I am configuring a Cisco router to a Draytek

The VPN tunnel comes up and I can start Remote Desktop sessions from the site with the Draytek to the site with the Cisco.

but I cannot do the same thing with the other way - i.e. I cannot open Remote Desktop sessions the other way.

In th cisco log is the following code when I try to connect from the Cisco site to the Dray tek site.

Any ideas what this is and how I can solve the issue?

IPSEC: Received an ESP packet (SPI= 0x79D1D28E, sequence number= 0x1) from 81.179.236.186 (user= 81.179.236.186) to 192.168.2.2. The decapsulated inner packet doesn't match the negotiated policy in the SA. The packet specifies its destination as 224.0.0.9, its source as 81.179.236.186, and its protocol as 2. The SA specifies its local proxy as Thetford_LAN/255.255.255.0/0/0 and its remote_proxy as Bury_LAN/255.255.255.0/0/0.
0
Comment
Question by:Mawallace
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
5 Comments
 
LVL 32

Expert Comment

by:Kamran Arshad
ID: 24821584
Hi,

Such errors crop up when there is a mismatch in the ACLs. Please confirm that you use the same subnets both sides.
0
 

Author Comment

by:Mawallace
ID: 24832099
I have - the problem it seems was down to MTU size on the Draytek. I cahnged this to 1300 which was the figure on the Cisco and it all works fine!
0
 

Author Comment

by:Mawallace
ID: 25012005
I in fact answered the question myself! If you see it was down to the MTU settings on the Draytek.
0
 

Accepted Solution

by:
Mawallace earned 0 total points
ID: 25012007
My solution worked!
0

Featured Post

Is your NGFW recommended by NSS Labs?

Ours is! NSS Labs Next Generation Firewall Test gives the WatchGuard Firebox M4600 a "Recommended" rating! Curious where your NGFW landed on the  Security Value Map? See the map and download the full report today!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

OpenVPN is a great open source VPN server that is capable of providing quick and easy VPN access to your network on the cheap.  By default the software is configured to allow open access to your network.  But what if you want to restrict users to on…
Envision that you are chipping away at another e-business site with a team of pundit developers and designers. Everything seems, by all accounts, to be going easily.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…

691 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question