IPsec Tunnel on Fortigate not working

alee0786 used Ask the Experts™

The IPsec tunnel on the Fortigate box is not working properly. It was working before and nothing has changed on the network. I have checked the logs on the dial up client (Fortigate box), I get the following message:

Initiator: parsed aggressive mode message # 1 (error)
Negotiate SA Error: probable pre-shared secret mismatch

On the Server (Fortigate box) the log is giving me this message:

Responder: parsed main mode message # 3 (error)
How can I make the tunnel go up again?

On the Server
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
setup the tunell from scratch? probable pre-shared secret mismatch
it is never "nothing has changed"
check if both sides are set to aggressive mode or try to change the authentication algorythms


OK, I have setup the tunnel from scratch almost 6-7 time already but same result. On the Server logs I am getting the following:

Received error notification from Peer: Invalid Hash Information.

I have checked and it is set to aggressive mode.
that means in general that the passwords do not match. chek your passwords if they are the same or if they are not too long


Now I tried setting it up to different authentication algorithm and it started working.

So far so good, it is holding up.

Thanks a lot.  
Qlemo"Batchelor", Developer and EE Topic Advisor
Top Expert 2015

This question has been classified as abandoned and is closed as part of the Cleanup Program. See the recommendation for more details.

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial