Solved

cisco and Draytek VPN Problem

Posted on 2009-07-09
5
1,751 Views
Last Modified: 2012-06-27
I am configuring a Cisco router to a Draytek

The VPN tunnel comes up and I can start Remote Desktop sessions from the site with the Draytek to the site with the Cisco.

but I cannot do the same thing with the other way - i.e. I cannot open Remote Desktop sessions the other way.

In th cisco log is the following code when I try to connect from the Cisco site to the Dray tek site.

Any ideas what this is and how I can solve the issue?

IPSEC: Received an ESP packet (SPI= 0x79D1D28E, sequence number= 0x1) from 81.179.236.186 (user= 81.179.236.186) to 192.168.2.2. The decapsulated inner packet doesn't match the negotiated policy in the SA. The packet specifies its destination as 224.0.0.9, its source as 81.179.236.186, and its protocol as 2. The SA specifies its local proxy as Thetford_LAN/255.255.255.0/0/0 and its remote_proxy as Bury_LAN/255.255.255.0/0/0.
0
Comment
Question by:Mawallace
  • 3
5 Comments
 
LVL 32

Expert Comment

by:Kamran Arshad
ID: 24821584
Hi,

Such errors crop up when there is a mismatch in the ACLs. Please confirm that you use the same subnets both sides.
0
 

Author Comment

by:Mawallace
ID: 24832099
I have - the problem it seems was down to MTU size on the Draytek. I cahnged this to 1300 which was the figure on the Cisco and it all works fine!
0
 

Author Comment

by:Mawallace
ID: 25012005
I in fact answered the question myself! If you see it was down to the MTU settings on the Draytek.
0
 

Accepted Solution

by:
Mawallace earned 0 total points
ID: 25012007
My solution worked!
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
anyconnect password change 2 38
Two factor authentication 6 89
AnyConnect - VPN server list 2 94
Internet Protocol Security question 3 94
Using Windows 2008 RRAS, I was able to successfully VPN into the network, but I was having problems restricting my test user from accessing certain things on the network.  I used Google in order to try to find out how to stop people from accessing c…
Let’s list some of the technologies that enable smooth teleworking. 
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…

860 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question