<div>
Solution provided. Author abandoned.
</div>

<div>
<div class="content wysiwyg-content">
Draytek to Cisco ASA IPSEC vpn issue 
I am sure its just a mismatch but wondered if anyone with more knowledge can tell me what to change on draytek to get it to connect. 
 
Draytek set to 
Dial Out 
IKEv1 
Pre shared key entered 
High (ESP) 
AES (with encryption) 
&nbsp; Phase 1 proposal : auto 
&nbsp; Phase 2 Proposal : AES256_SHA256 
Key 1 lifetime : 86400 
Key 2 Lifetime : 3600 
PFS : enable 
Local ID blank 
 
 
Here is the cisco config for VPN 
 
crypto ipsec ikev1 transform-set ESP-AES256-SHA esp-aes-256 esp-sha-hmac 
 
crypto ikev1 policy 5 
authentication pre-share 
encryption aes-256 
hash sha 
group 2 
lifetime 86400 
 
 
crypto map site-to-site 100 match address CCTV-TSI-VPN 
crypto map site-to-site 100 set pfs 
crypto map site-to-site 100 set peer 8x.xx.xx.xx 
crypto map site-to-site 100 set ikev1 transform-set ESP-AES256-SHA 
crypto map site-to-site 100 set security-association lifetime seconds 3600 
crypto map site-to-site 100 set security-association lifetime kilobytes 4608000
</div>
</div>

Draytek to Cisco ASA IPSEC vpn issue
I am sure its just a mismatch but wondered if anyone with more knowledge can tell me what to change on draytek to get it to connect.

Draytek set to 
Dial Out
IKEv1
Pre shared key entered
High (ESP)
AES (with encryption)
  Phase 1 proposal : auto
  Phase 2 Proposal : AES256_SHA256
Key 1 lifetime : 86400
Key 2 Lifetime : 3600
PFS : enable
Local ID blank


Here is the cisco config for VPN

crypto ipsec ikev1 transform-set ESP-AES256-SHA esp-aes-256 esp-sha-hmac

crypto ikev1 policy 5
authentication pre-share
encryption aes-256
hash sha
group 2
lifetime 86400


crypto map site-to-site 100 match address CCTV-TSI-VPN
crypto map site-to-site 100 set pfs 
crypto map site-to-site 100 set peer 8x.xx.xx.xx
crypto map site-to-site 100 set ikev1 transform-set ESP-AES256-SHA
crypto map site-to-site 100 set security-association lifetime seconds 3600
crypto map site-to-site 100 set security-association lifetime kilobytes 4608000

Help required Draytek to Cisco ASA IPSEC configuration

Internet Protocol Security (IPsec) is a protocol suite for secure Internet Protocol (IP) communications by authenticating and encrypting each IP packet of a communication session. IPsec includes protocols for establishing mutual authentication between agents at the beginning of the session and negotiation of cryptographic keys to be used during the session. IPsec can be used in protecting data flows between a pair of hosts (host-to-host), between a pair of security gateways (network-to-network), or between a security gateway and a host (network-to-host). IPsec is an end-to-end security scheme operating in the Internet Layer of the Internet Protocol Suite.

Internet Protocol Security

DrayTek

Cisco PIX is a dedicated hardware firewall appliance; the Cisco Adaptive Security Appliance (ASA) is a firewall and anti-malware security appliance that provides unified threat management and protection the PIX does not. Other Cisco devices and systems include routers, switches, storage networking, wireless and the software and hardware for PIX Firewall Manager (PFM), PIX Device Manager (PDM) and Adaptive Security Device Manager (ASDM).

Cisco

A virtual private network (VPN) is a network that uses a public telecommunication infrastructure, such as the Internet, to provide remote offices or travelling users access to a central organizational network securely. VPNs encapsulate data transfers using secure cryptographic methods and other security mechanisms to ensure that only authorized users can access the network and that the data cannot be intercepted.