IPSEC: 3 Site-to-Site VPN's - Only 2 are working, keep getting IKE link timeout: state linking
I'm fairly new to VPN services so I don't really know what's happening and why.
I am trying to connect 3 remote sites to HQ by using site-to-site VPN and have managed to get 2 working.
The 3th one won't come online and I cant really figure out why, I have used the exact same config on all 3 routers (Vigor2925) for Outbound connections (except for local subnet ofcourse) and the same inboud settings for HQ router (also Vigor2925).
When I check the syslog on the remote site, it gives the following error:
[IPSEC][L2L][1:Wessem-Out]
On HQ I keep getting this one:
Responding to Main Mode from <WAN IP REMOTE SITE>
Accept Phase1 prorosals : ENCR OAKLEY_DES_CBC, HASH OAKLEY_MD5
Can someone maybe explain what im doing wrong??
I am trying to connect 3 remote sites to HQ by using site-to-site VPN and have managed to get 2 working.
The 3th one won't come online and I cant really figure out why, I have used the exact same config on all 3 routers (Vigor2925) for Outbound connections (except for local subnet ofcourse) and the same inboud settings for HQ router (also Vigor2925).
When I check the syslog on the remote site, it gives the following error:
[IPSEC][L2L][1:Wessem-Out]
On HQ I keep getting this one:
Responding to Main Mode from <WAN IP REMOTE SITE>
Accept Phase1 prorosals : ENCR OAKLEY_DES_CBC, HASH OAKLEY_MD5
Can someone maybe explain what im doing wrong??
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
@noci I'm agreed of what you are saying but everything depends on the model of the router he has.
Technically speaking, I'm guessing he's knows all that and I'm just giving him a general idea of what could it be.
And where to go.
Technically speaking, I'm guessing he's knows all that and I'm just giving him a general idea of what could it be.
And where to go.
ASKER
Thanks for the advice people, it's been a couple of days but I've solved my issue.
I don't really understand why it's working now, but rebuilding my config (exactly the same) fixed this issue.
I don't really understand why it's working now, but rebuilding my config (exactly the same) fixed this issue.
2. Question - Are all routers directly connected to the internet without other devices between them? All with fixed IPs?