asked on

Configration between mikrotek and pfsense and sonicwall auth error in vpn tunnel IPSEC

I have a mikotik vpn configured with location A which has a sonicwall, and B with pfsense. All of them use IKV2 it was connected fine, however once we changed ISP on the mikotik vpn, we also changed the ip on pfsense and sonicwall, and lan ips on mikrotik but no matter what i do it wont connect and it keeps getting authentication error, i have countless times now check pre share key and key id tags to match complely but it still gives me "Authentication, Errro"

http://prntscr.com/j4qngx

Kindly advise what to do

Thanks

noci

I think you means IPSEC VPN where you mention Microtik VPN...
For the main mode authentication (/ phase 1) check if address is used or something else. In the case of address it might need change on the side where the address didn't change.
Also the tunnel specs need to be updated for Quickmode (/ phase 2) on both sides.

shay911

ASKER

Hi,

I have ipsec ikv2 . i changed the address on both remote sites, and also on the mikrotik, but it still wont connect.

i keep getting this
http://prntscr.com/j5ylq0

Thanks

shay911

ASKER

here is another screen shot of the error

http://prntscr.com/j5yu99

noci

So you are coming from a Private LAN to a public one.
NAT-T is enabled?
Also the 137... site sees the PUBLIC address of the site with 10.1.0.19 using 10.1.0.19 @ remote will be troublesome.
If it is possible on both systems to enter a DNS or MAIL reference try those...
say for the 10 side: ten-site.ipsec and for the public-net side: public-site.ipsec
or tenside@ipsec.myvpn and public@ipsec.myvpn

(Any name should go as long as they are matching the right site.).

This question needs an answer!

Become an EE member today

7 DAY FREE TRIAL

Members can start a 7-Day Free trial then enjoy unlimited access to the platform.

View membership options

Learn why we charge membership fees

We get it - no one likes a content blocker. Take one extra minute and find out why we block content.