Comes <Linksys-IP>:500-><Fortigate-IP>:500,ifindex=3, wan1, vf_id=0.... Exchange Mode = 5, Message id = 0x00000000, Len = 57 ####### ISAKMP INFO ########## You should send a protected info...Linksys:
UDP from <Fortigate-IP>:500 to <Linksys-IP>:500 IKE[1] Tx >> Notify : INVALID-MAJOR-VERSIONIt only seems to appear in aggressive mode. As I said before, this message has only informational meaning, and doesn' t seem to stress the gateways, but I' d like to know the cause of it. Does the FortiGate send packets with wrong headers? Has anyone seen with this kind of message?
Created on 02-28-2005 08:41 AM
Created on 02-28-2005 11:02 PM
use the ping function to make sure the tunnel is always upAh, thanks for the tip, I will try this.
# show vpn ipsec phase1 sgLinksys01 config vpn ipsec phase1 edit " sgLinksys01" set type dynamic set dpd enable set dhgrp 2 set proposal 3des-sha1 set peertype one set mode aggressive set psksecret ENC XXXXXXXXX set peerid " Linksys01" next end # show vpn ipsec phase2 tunLinksys01 config vpn ipsec phase2 edit " tunLinksys01" set dhgrp 2 set pfs enable set phase1name " sgLinksys01" set proposal 3des-sha1 set replay enable set keylifeseconds 14400 next end
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.