Dear All ,
i created IPSEC VPN from FGT to CISCO (its a migration from checkpoint to FGT )
Encryption ,hashing , DH , Key life and pre share are all same as before .
Key exchage/Proposal exchange i can see after(ident_i3send) am getting error :
Ignoring unencrypted PAYLOAD-MALFORMED message From -----(remote Gateway IP)
Thanks,
Praveen
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Hello Praveen,
Check the VPN Client Phase 1 algorithms to be consistent with the gateway (or peer) Phase 1 algorithms. Check the IP address range. Check the Local and remote IDs. (You can specify those if there are multiple tunnels between the two) Note: the local ID on one site is the remote ID on the other site and conversely ! Check the PFS to be activated or not on both peers
Also verify the preshared key and try to avoid special characters.
Regards
Dear Awasfi,
Thank you for your update , now its working issue with pre-share key .
R/
Praveen
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1517 | |
1013 | |
749 | |
443 | |
209 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.