<div>
<div class="content wysiwyg-content">
Hello,<br />
I'm working on setting up a Site-to-Site VPN between 2 Sonicwall Firewalls running Enhanced OS. &nbsp;I've done this a ton of times, and have even ran into this issue before, but can't remember how I solved this previously. &nbsp;We are using Main Mode, with static WAN IPs on both ends.<br />
<br />
Using the unique Firewall identifier as the peer/local IKE ID. &nbsp;Using pre-share key. &nbsp;Pretty much everything else is set as default (Keep Alive and NetBIOS is also turned on).<br />
<br />
Phase 2 is set to ESP, 3DES, SHA1, LT 28800 on both units<br />
<br />
After setting up the VPN, during Phase II we get a &quot;Received notify: INVALID_ID_INFO&quot;<br />
<br />
From what I remember and have read, this is usually due to the networks tabs not lining up properly. &nbsp;<br />
<br />
For local network, I am choosing the X0 interface as my network, which is a 192.168.x.x /24 on both sides.<br />
<br />
For remote, I created an address object with the other sites subnet, and added this to the VPN interface. &nbsp; <br />
<br />
Any suggestions?
</div>
</div>


Hello,
I'm working on setting up a Site-to-Site VPN between 2 Sonicwall Firewalls running Enhanced OS.  I've done this a ton of times, and have even ran into this issue before, but can't remember how I solved this previously.  We are using Main Mode, with static WAN IPs on both ends.

Using the unique Firewall identifier as the peer/local IKE ID.  Using pre-share key.  Pretty much everything else is set as default (Keep Alive and NetBIOS is also turned on).

Phase 2 is set to ESP, 3DES, SHA1, LT 28800 on both units

After setting up the VPN, during Phase II we get a "Received notify: INVALID_ID_INFO"

From what I remember and have read, this is usually due to the networks tabs not lining up properly.  

For local network, I am choosing the X0 interface as my network, which is a 192.168.x.x /24 on both sides.

For remote, I created an address object with the other sites subnet, and added this to the VPN interface.   

Any suggestions?

Sonicwall Site-to-Site VPN - Phase II - IPSec Received notify: INVALID_ID_INFO

Hardware-based firewalls provide more sophisticated protection for inbound and outbound traffic than the simple Windows software firewall or the basic NAT firewalls found in routers. These devices implement techniques such as stateful packet inspection, deep packet inspection, and content filtering; and may include built-in antivirus and anti-malware protection.

Hardware Firewalls

A virtual private network (VPN) is a network that uses a public telecommunication infrastructure, such as the Internet, to provide remote offices or travelling users access to a central organizational network securely. VPNs encapsulate data transfers using secure cryptographic methods and other security mechanisms to ensure that only authorized users can access the network and that the data cannot be intercepted.

Internet Protocol Security (IPsec) is a protocol suite for secure Internet Protocol (IP) communications by authenticating and encrypting each IP packet of a communication session. IPsec includes protocols for establishing mutual authentication between agents at the beginning of the session and negotiation of cryptographic keys to be used during the session. IPsec can be used in protecting data flows between a pair of hosts (host-to-host), between a pair of security gateways (network-to-network), or between a security gateway and a host (network-to-host). IPsec is an end-to-end security scheme operating in the Internet Layer of the Internet Protocol Suite.