Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
praveen_Dharmaraj
New Contributor

IPSEC VPN Between Fortigate And Cisco

Dear All ,

 

i created IPSEC VPN from FGT to CISCO (its a migration from checkpoint to FGT )

 

Encryption ,hashing , DH , Key life and pre share are all same as before .

 

Key exchage/Proposal exchange i can see after(ident_i3send)  am getting error :

 

Ignoring unencrypted PAYLOAD-MALFORMED message From -----(remote Gateway IP)

 

Thanks,

Praveen

 

2 REPLIES 2
awasfi_FTNT
Staff
Staff

Hello Praveen,

 

Check the VPN Client Phase 1 algorithms to be consistent with the gateway (or peer) Phase 1 algorithms. Check the IP address range. Check the Local and remote IDs. (You can specify those if there are multiple tunnels between the two) Note: the local ID on one site is the remote ID on the other site and conversely ! Check the PFS to be activated or not on both peers

Also verify the preshared key and try to avoid special characters.

 

Regards

AWASFI
praveen_Dharmaraj

Dear Awasfi,

 

 

Thank you for your update , now its working issue with pre-share key .

 

R/

Praveen

 

 

Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors