Unlock Exclusive Benefits
Join Our Community Today!
Join our community and post in the forum to earn your exclusive Holiday badge! Become a member today!
LOGIN/REGISTER
CONTINUE AS A GUEST
- Support Forum
- Knowledge Base
- Customer Service
- Internal Article Nominations
- FortiGate
- FortiClient
- FortiAP
- FortiAnalyzer
- FortiADC
- FortiAuthenticator
- FortiBridge
- FortiCache
- FortiCarrier
- FortiCASB
- FortiConnect
- FortiConverter
- FortiCNP
- FortiDAST
- FortiDDoS
- FortiDB
- FortiDNS
- FortiDLP
- FortiDevSec
- FortiDeceptor
- FortiDirector
- FortiEDR
- FortiExtender
- FortiGate Cloud
- FortiHypervisor
- FortiGuard
- FortiInsight
- FortiIsolator
- FortiMail
- FortiMonitor
- FortiManager
- FortiNAC
- FortiNAC-F
- FortiNDR (on-premise)
- FortiNDRCloud
- FortiPAM
- FortiPhish
- FortiPortal
- FortiProxy
- FortiRecon
- FortiRecorder
- FortiSRA
- FortiSandbox
- FortiSASE
- FortiScan
- FortiSIEM
- FortiSOAR
- FortiSwitch
- FortiTester
- FortiToken
- FortiVoice
- FortiWAN
- FortiWeb
- FortiAppSec Cloud
- Lacework
- Wireless Controller
- RMA Information and Announcements
- FortiCloud Products
- ZTNA
- 4D Documents
- Customer Service
- Community Groups
- Blogs
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
- Fortinet Community
- Support Forum
- Re: VPN and DHCP Relaying
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
VPN and DHCP Relaying
Hello
Im trying to use my internal DHCP-Server for VPN users. But im only get the Ips from the Client Address Range in the VPN Config. I changed also the internal interface to this config:
DHCP Server Enable Advanced... Mode Server Relay DHCP Server IP Type Regular IPsec But it dosent work.
Did i forgot something?
Kind Regards
Labels:
- Labels:
-
5.2
Nominate a Forum Post for Knowledge Article Creation
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
20 REPLIES 20
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
There may be a way, after all. I was researching CLI VPN configurations for another issue, and found that you can specify the source of the addresses assigned, even after mode-cfg has been enabled:
config vpn ipsec phase1-interface
edit <gateway_name>
set mode-cfg enable
set assign-ip enable
set assign-ip-from {range | usrgrp | dhcp}
...
end
So, the 'assign-ip-from' line wouldn't appear in your configuration, since 'range' is the default setting. If you modify it to DHCP, you should be able to request an address via DHCP as long as the service is enabled in the Phase 2 settings:
config vpn ipsec phase2-interface
edit <tunnel_name>
set dhcp-ipsec enable
end
Give it a shot and let me know how it goes.
Regards, Chris McMullan Fortinet Ottawa
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Now I see dhcp requests. But offer 0.0.0.0
FGT70D # ike 0: comes 194.230.155.139:57219->84.73.193.80:500,ifindex=5....
ike 0: IKEv1 exchange=Identity Protection id=88b66b54d8a1d8bc/0000000000000000 len=596
ike 0: in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
ike 0:88b66b54d8a1d8bc/0000000000000000:32: responder: main mode get 1st message...
ike 0:88b66b54d8a1d8bc/0000000000000000:32: VID RFC 3947 4A131C81070358455C5728F20E95452F
ike 0:88b66b54d8a1d8bc/0000000000000000:32: VID unknown (16): 4DF37928E9FC4FD1B3262170D515C662
ike 0:88b66b54d8a1d8bc/0000000000000000:32: VID draft-ietf-ipsec-nat-t-ike-08 8F8D83826D246B6FC7A8A6A428C11DE8
ike 0:88b66b54d8a1d8bc/0000000000000000:32: VID draft-ietf-ipsec-nat-t-ike-07 439B59F8BA676C4C7737AE22EAB8F582
ike 0:88b66b54d8a1d8bc/0000000000000000:32: VID draft-ietf-ipsec-nat-t-ike-06 4D1E0E136DEAFA34C4F3EA9F02EC7285
ike 0:88b66b54d8a1d8bc/0000000000000000:32: VID draft-ietf-ipsec-nat-t-ike-05 80D0BB3DEF54565EE84645D4C85CE3EE
ike 0:88b66b54d8a1d8bc/0000000000000000:32: VID draft-ietf-ipsec-nat-t-ike-04 9909B64EED937C6573DE52ACE952FA6B
ike 0:88b66b54d8a1d8bc/0000000000000000:32: VID draft-ietf-ipsec-nat-t-ike-03 7D9419A65310CA6F2C179D9215529D56
ike 0:88b66b54d8a1d8bc/0000000000000000:32: VID draft-ietf-ipsec-nat-t-ike-02 CD60464335DF21F87CFDB2FC68B6A448
ike 0:88b66b54d8a1d8bc/0000000000000000:32: VID draft-ietf-ipsec-nat-t-ike-02\n 90CB80913EBB696E086381B5EC427B1F
ike 0:88b66b54d8a1d8bc/0000000000000000:32: VID draft-ietf-ipsra-isakmp-xauth-06.txt 09002689DFD6B712
ike 0:88b66b54d8a1d8bc/0000000000000000:32: VID CISCO-UNITY 12F5F28C457168A9702D9FE274CC0100
ike 0:88b66b54d8a1d8bc/0000000000000000:32: VID FRAGMENTATION 4048B7D56EBCE88525E7DE7F00D6C2D380000000
ike 0:88b66b54d8a1d8bc/0000000000000000:32: VID DPD AFCAD71368A1F1C96B8696FC77570100
ike 0: cache rebuild start
ike 0:Du-CISCO: cached as dynamic
ike 0:_BOOTSTRAP5_: failed to set local gateway to 84.73.193.80: 2 No such file or directory
ike 0:_BOOTSTRAP5_: cached as dynamic
ike 0: cache rebuild done
ike 0:88b66b54d8a1d8bc/0000000000000000:32: negotiation result
ike 0:88b66b54d8a1d8bc/0000000000000000:32: proposal id = 1:
ike 0:88b66b54d8a1d8bc/0000000000000000:32: protocol id = ISAKMP:
ike 0:88b66b54d8a1d8bc/0000000000000000:32: trans_id = KEY_IKE.
ike 0:88b66b54d8a1d8bc/0000000000000000:32: encapsulation = IKE/none
ike 0:88b66b54d8a1d8bc/0000000000000000:32: type=OAKLEY_ENCRYPT_ALG, val=AES_CBC.
ike 0:88b66b54d8a1d8bc/0000000000000000:32: type=OAKLEY_HASH_ALG, val=MD5.
ike 0:88b66b54d8a1d8bc/0000000000000000:32: type=AUTH_METHOD, val=PRESHARED_KEY_XAUTH_I.
ike 0:88b66b54d8a1d8bc/0000000000000000:32: type=OAKLEY_GROUP, val=MODP1024.
ike 0:88b66b54d8a1d8bc/0000000000000000:32: ISAKMP SA lifetime=86400
ike 0:88b66b54d8a1d8bc/0000000000000000:32: SA proposal chosen, matched gateway Du-CISCO
ike 0:Du-CISCO:32: DPD negotiated
ike 0:Du-CISCO:32: XAUTHv6 negotiated
ike 0:Du-CISCO:32: peer supports UNITY
ike 0:Du-CISCO:32: unsupported NAT-T version draft-ietf-ipsec-nat-t-ike-04
ike 0:Du-CISCO:32: unsupported NAT-T version draft-ietf-ipsec-nat-t-ike-05
ike 0:Du-CISCO:32: unsupported NAT-T version draft-ietf-ipsec-nat-t-ike-06
ike 0:Du-CISCO:32: unsupported NAT-T version draft-ietf-ipsec-nat-t-ike-07
ike 0:Du-CISCO:32: unsupported NAT-T version draft-ietf-ipsec-nat-t-ike-08
ike 0:Du-CISCO:32: selected NAT-T version: RFC 3947
ike 0:Du-CISCO:32: cookie 88b66b54d8a1d8bc/920f593b7d984736
ike 0:Du-CISCO:32: out 88B66B54D8A1D8BC920F593B7D9847360110020000000000000000DC0D00003800000001000000010000002C010100010000002403010000800B0001800C0E1080010007800E01008003FDE980020001800400020D0000144A131C81070358455C5728F20E95452F0D000014AFCAD71368A1F1C96B8696FC775701000D00000C09002689DFD6B7120D00001412F5F28C457168A9702D9FE274CC02040D0000148299031757A36082C6A621DE0005029E0D0000144048B7D56EBCE88525E7DE7F00D6C2D3000000184048B7D56EBCE88525E7DE7F00D6C2D3C0000000
ike 0:Du-CISCO:32: sent IKE msg (ident_r1send): 84.73.193.80:500->194.230.155.139:57219, len=220, id=88b66b54d8a1d8bc/920f593b7d984736
ike 0: comes 194.230.155.139:57219->84.73.193.80:500,ifindex=5....
ike 0: IKEv1 exchange=Identity Protection id=88b66b54d8a1d8bc/920f593b7d984736 len=220
ike 0: in 88B66B54D8A1D8BC920F593B7D9847360410020000000000000000DC0A0000849E69354A0081510509CFE20795E6BD3A5AC13FB495BCBAADAF0DC68525FDCE51023EA2ABEE5B6C4ADA163C3498D264B61EDD984DF663514D0EFEFD830D626B1214C1CA359457539A31EBE82E5990456D6F1FF8320FD28C993CF9A79EDACD777D960DB86C3E8BD406C91407E885B65E957579F1D4EE007521BD29CD998D8E755214000014DB6A47C18FB174C396C3ACE129BD363914000014CDA6234D2826FA563067CC9D9F520C2D00000014299C7106B15DACB80B9F57911BC96126
ike 0:Du-CISCO:32: responder:main mode get 2nd message...
ike 0:Du-CISCO:32: NAT detected: PEER
ike 0:Du-CISCO:32: out 88B66B54D8A1D8BC920F593B7D9847360410020000000000000000DC0A000084E63E90E2EFD21CE19A9A3F1049CB744B46718353D4DE43426C59B26BBA4DFBFAEA2E1193CD97BD6A7D419821E65542F1B4A4705B39471A6D0B6EA9AB5900392D6AFCEE9D81109C88DA5294A49699B0286D4B07F889F0FE9C9413DDC93637AFE9551E769AEE279D225F8AF4416C14DDBB44B33F36FE457D4AA3F6B146C680E7FC14000014CFB01677357752084F00FEA259C7F8EA14000014BE4AAB094B9AECE76522E9F17348588D00000014CDA6234D2826FA563067CC9D9F520C2D
ike 0:Du-CISCO:32: sent IKE msg (ident_r2send): 84.73.193.80:500->194.230.155.139:57219, len=220, id=88b66b54d8a1d8bc/920f593b7d984736
ike 0:Du-CISCO:32: ISAKMP SA 88b66b54d8a1d8bc/920f593b7d984736 key 32:379D2C7D3622868BB2A779E7AC8D1DD4613B16A32515DDB30AC483957BCA625F
ike 0: comes 194.230.155.139:44950->84.73.193.80:4500,ifindex=5....
ike 0: IKEv1 exchange=Identity Protection id=88b66b54d8a1d8bc/920f593b7d984736 len=92
ike 0: in 88B66B54D8A1D8BC920F593B7D98473605100201000000000000005CFBDC67C2307ABB7DBCF31B9628D03BDDFE9A2F657AB07AA0074C0511C23B86C76897741F1103AAA2AAAD096ACA0384BC788A17D8F6EA8DBA0301FAE74F27F1AB
ike 0:Du-CISCO:32: responder: main mode get 3rd message...
ike 0:Du-CISCO:32: dec 88B66B54D8A1D8BC920F593B7D98473605100201000000000000005C0800000C011101F40A97169E0B0000142249425AD9B22EEA513FD9E8929CC02D0000001C000000010110600288B66B54D8A1D8BC920F593B7D98473600000004
ike 0:Du-CISCO:32: received p1 notify type INITIAL-CONTACT
ike 0:Du-CISCO:32: peer identifier IPV4_ADDR 10.151.22.158
ike 0:Du-CISCO:32: PSK authentication succeeded
ike 0:Du-CISCO:32: authentication OK
ike 0:Du-CISCO:32: enc 88B66B54D8A1D8BC920F593B7D98473605100201000000000000003C0800000C010000005449C15000000014A53FBB49603CCE9AE7EBD8E4176395D7
ike 0:Du-CISCO:32: remote port change 57219 -> 44950
ike 0:Du-CISCO:32: out 88B66B54D8A1D8BC920F593B7D98473605100201000000000000004C6974D947EF17B42D3FD0FE2B72068FA66C09D3081DB1903CC3B52AEE1DDC68BD1D0FC086DDEFFE9C27D84F90005A5B13
ike 0:Du-CISCO:32: sent IKE msg (ident_r3send): 84.73.193.80:4500->194.230.155.139:44950, len=76, id=88b66b54d8a1d8bc/920f593b7d984736
ike 0:Du-CISCO: adding new dynamic tunnel for 194.230.155.139:44950
ike 0:Du-CISCO_0: added new dynamic tunnel for 194.230.155.139:44950
ike 0:Du-CISCO_0:32: established IKE SA 88b66b54d8a1d8bc/920f593b7d984736
ike 0:Du-CISCO_0:32: processing INITIAL-CONTACT
ike 0:Du-CISCO_0: flushing
ike 0:Du-CISCO_0: flushed
ike 0:Du-CISCO_0:32: processed INITIAL-CONTACT
ike 0:Du-CISCO_0:32: initiating XAUTH.
ike 0:Du-CISCO_0:32: sending XAUTH request
ike 0:Du-CISCO_0:32: enc 88B66B54D8A1D8BC920F593B7D98473608100601419BBF64000000440E000014FF8B7D303FE89EE58F4CACC810C63D10000000140100636DC088000040890000408A0000
ike 0:Du-CISCO_0:32: out 88B66B54D8A1D8BC920F593B7D98473608100601419BBF640000004C454C20F3FBE1195402CF798947E17D709821716783B4FF1DDC93871DC29F065469788623F15BF72A2978EE00B4775131
ike 0:Du-CISCO_0:32: sent IKE msg (cfg_send): 84.73.193.80:4500->194.230.155.139:44950, len=76, id=88b66b54d8a1d8bc/920f593b7d984736:419bbf64
ike 0:Du-CISCO_0:32: peer has not completed XAUTH exchange
ike 0:Du-CISCO_0:32: out 88B66B54D8A1D8BC920F593B7D98473608100601419BBF640000004C454C20F3FBE1195402CF798947E17D709821716783B4FF1DDC93871DC29F065469788623F15BF72A2978EE00B4775131
ike 0:Du-CISCO_0:32: sent IKE msg (CFG_RETRANS): 84.73.193.80:4500->194.230.155.139:44950, len=76, id=88b66b54d8a1d8bc/920f593b7d984736:419bbf64
ike 0:Du-CISCO_0: link is idle 5 84.73.193.80->194.230.155.139:44950 dpd=1 seqno=1
ike 0:Du-CISCO_0:32: send IKEv1 DPD probe, seqno 1
ike 0:Du-CISCO_0:32: enc 88B66B54D8A1D8BC920F593B7D9847360810050179FBB8FF000000500B0000142E3FBFCC46720BC35C680842650B38BC000000200000000101108D2888B66B54D8A1D8BC920F593B7D98473600000001
ike 0:Du-CISCO_0:32: out 88B66B54D8A1D8BC920F593B7D9847360810050179FBB8FF0000005C6DBF8FE7274EAC4753FC0D5FA659CEF59DBC320CFD8703A20B620481B2AD4FDAD2B2A376FEB5EA2E8682D18DA92B773B0692823858F0129BE42EA7B730131D2A
ike 0:Du-CISCO_0:32: sent IKE msg (R-U-THERE): 84.73.193.80:4500->194.230.155.139:44950, len=92, id=88b66b54d8a1d8bc/920f593b7d984736:79fbb8ff
ike 0: comes 194.230.155.139:44950->84.73.193.80:4500,ifindex=5....
ike 0: IKEv1 exchange=Informational id=88b66b54d8a1d8bc/920f593b7d984736:c72a46e1 len=92
ike 0: in 88B66B54D8A1D8BC920F593B7D98473608100501C72A46E10000005C90B5ED1912FB9F5C5B447E18D7F9E95668FCF84E4C52D10264E67663C58DF347C520320AA3F316EB05028CFABE4420253F0EA041354A341FB78985ECEFEAC11E
ike 0:Du-CISCO_0:32: dec 88B66B54D8A1D8BC920F593B7D98473608100501C72A46E10000005C0B00001420A5EFC8C8AACA19DBEDB903B6F86E36000000200000000101108D2988B66B54D8A1D8BC920F593B7D9847360000000100000000000000000000000C
ike 0:Du-CISCO_0:32: notify msg received: R-U-THERE-ACK
ike 0:Du-CISCO_0:32: out 88B66B54D8A1D8BC920F593B7D98473608100601419BBF640000004C454C20F3FBE1195402CF798947E17D709821716783B4FF1DDC93871DC29F065469788623F15BF72A2978EE00B4775131
ike 0:Du-CISCO_0:32: sent IKE msg (CFG_RETRANS): 84.73.193.80:4500->194.230.155.139:44950, len=76, id=88b66b54d8a1d8bc/920f593b7d984736:419bbf64
ike 0: comes 194.230.155.139:44950->84.73.193.80:4500,ifindex=5....
ike 0: IKEv1 exchange=Mode config id=88b66b54d8a1d8bc/920f593b7d984736:419bbf64 len=92
ike 0: in 88B66B54D8A1D8BC920F593B7D98473608100601419BBF640000005C67CDB7B6BBB3FCFB2FC490BC716B048AE3E318DCF77868471D74DCF953F7E5F9D830E16BD62601DB4ACF66DF8FBC6B4A3A431D2B4D7260406BEF9286EC78CB2C
ike 0:Du-CISCO_0:32: dec 88B66B54D8A1D8BC920F593B7D98473608100601419BBF640000005C0E0000148F780DC926F0D4E68D59BD96D85E718E000000200200630040890008636872696869747A408A00085369723168656C6C00000000000000000000000C
ike 0:Du-CISCO_0:32: received XAUTH_USER_NAME 'chrihitz' length 8
ike 0:Du-CISCO_0:32: received XAUTH_USER_PASSWORD length 8
ike 0:Du-CISCO_0: XAUTH user "chrihitz"
ike 0:Du-CISCO: auth group VPN-Users
ike 0:Du-CISCO_0: XAUTH succeeded for user "chrihitz" group "VPN-Users"
ike 0:Du-CISCO_0:32: enc 88B66B54D8A1D8BC920F593B7D9847360810060171C3C7560000003C0E0000149D9B827A0A42A7310C306A804FFEF8E30000000C03006300C08F0001
ike 0:Du-CISCO_0:32: out 88B66B54D8A1D8BC920F593B7D9847360810060171C3C7560000004C6FEC18CBB8EF273AEFE5759D0CDCBE796AFEAE823431E41A6DC6A71EBCAC943DE70FF5722042E90F41D349FDC9EC915D
ike 0:Du-CISCO_0:32: sent IKE msg (cfg_send): 84.73.193.80:4500->194.230.155.139:44950, len=76, id=88b66b54d8a1d8bc/920f593b7d984736:71c3c756
ike 0: comes 194.230.155.139:44950->84.73.193.80:4500,ifindex=5....
ike 0: IKEv1 exchange=Mode config id=88b66b54d8a1d8bc/920f593b7d984736:71c3c756 len=76
ike 0: in 88B66B54D8A1D8BC920F593B7D9847360810060171C3C7560000004C1018401AA5E26AA70F50143B433F12A071115A722EB0228A1591C104FB2E5A2AF234FED47705CBAFED4C8BCF9A8A9731
ike 0:Du-CISCO_0:32: dec 88B66B54D8A1D8BC920F593B7D9847360810060171C3C7560000004C0E000014B53AB27612EBCB1EDFC2FB42D17D4DA30000000C04006300C08F000000000000000000000000000000000010
ike 0: comes 194.230.155.139:44950->84.73.193.80:4500,ifindex=5....
ike 0: IKEv1 exchange=Mode config id=88b66b54d8a1d8bc/920f593b7d984736:f5c29c4a len=172
ike 0: in 88B66B54D8A1D8BC920F593B7D98473608100601F5C29C4A000000AC1DD67136FD29B968E625E1C56050F66631D7F5A6FDA90F6F4E6E743E03B9DD248A074D93149B1DFFF97FBC1C724EBF55C1221DCB744280FB4CDF9565BE7898C3EC62F2A9C745FD1C818D0D4962C6A912B7912A48A856744CE94BFF73AA44C30523FFD11CC6CDEC0E6BB5AB31CCB1D39B7C60F445018F6BE6DA0625F9F456FC5C9546A073BD50EBCB5F6C02ABD8AB9581
ike 0:Du-CISCO_0:32: dec 88B66B54D8A1D8BC920F593B7D98473608100601F5C29C4A000000AC0E000014476BCC1A99162D35D07B036D1AD7C2C20000006E0100DE6E000100000002000000030000000400000005000000070026436973636F2053797374656D732056504E20436C69656E7420382E333A6950686F6E65204F53700000007002000070030000700400007006000070070000700100007008000070090000700B0000000000000000000000000000000E
ike 0:Du-CISCO_0:32: mode-cfg type 1 request 0:''
ike 0:Du-CISCO_0:32: IPv4 address requested, using DHCP
ike 0:Du-CISCO_0:32: mode-cfg type 2 request 0:''
ike 0:Du-CISCO_0:32: mode-cfg type 3 request 0:''
ike 0:Du-CISCO_0:32: mode-cfg type 4 request 0:''
ike 0:Du-CISCO_0:32: mode-cfg WINS ignored, no WINS servers configured
ike 0:Du-CISCO_0:32: mode-cfg type 5 request 0:''
ike 0:Du-CISCO_0:32: mode-cfg type 7 request 38:'436973636F2053797374656D732056504E20436C69656E7420382E333A6950686F6E65204F53'
ike 0:Du-CISCO_0:32: mode-cfg received APPLICATION_VERSION Cisco Systems VPN Client 8.3:iPhone OSp
ike 0:Du-CISCO_0:32: mode-cfg type 28672 request 0:''
ike 0:Du-CISCO_0:32: mode-cfg UNITY type 28672 requested
ike 0:Du-CISCO_0:32: mode-cfg no banner configured, ignoring
ike 0:Du-CISCO_0:32: mode-cfg type 28674 request 0:''
ike 0:Du-CISCO_0:32: mode-cfg UNITY type 28674 requested
ike 0:Du-CISCO_0:32: mode-cfg no domain configured, ignoring
ike 0:Du-CISCO_0:32: mode-cfg type 28675 request 0:''
ike 0:Du-CISCO_0:32: mode-cfg UNITY type 28675 requested
ike 0:Du-CISCO_0:32: mode-cfg UNITY type 28675 not supported, ignoring
ike 0:Du-CISCO_0:32: mode-cfg type 28676 request 0:''
ike 0:Du-CISCO_0:32: mode-cfg UNITY type 28676 requested
ike 0:Du-CISCO_0:32: mode-cfg type 28678 request 0:''
ike 0:Du-CISCO_0:32: mode-cfg UNITY type 28678 requested
ike 0:Du-CISCO_0:32: mode-cfg type 28679 request 0:''
ike 0:Du-CISCO_0:32: mode-cfg UNITY type 28679 requested
ike 0:Du-CISCO_0:32: mode-cfg type 28673 request 0:''
ike 0:Du-CISCO_0:32: mode-cfg UNITY type 28673 requested
ike 0:Du-CISCO_0:32: mode-cfg type 28680 request 0:''
ike 0:Du-CISCO_0:32: mode-cfg UNITY type 28680 requested
ike 0:Du-CISCO_0:32: mode-cfg UNITY type 28680 not supported, ignoring
ike 0:Du-CISCO_0:32: mode-cfg type 28681 request 0:''
ike 0:Du-CISCO_0:32: mode-cfg UNITY type 28681 requested
ike 0:Du-CISCO_0:32: mode-cfg no backup-gateway configured, ignoring
ike 0:Du-CISCO_0:32: mode-cfg type 28683 request 0:''
ike 0:Du-CISCO_0:32: mode-cfg attribute type 28683 not supported, ignoring
ike 0:Du-CISCO_0:32: sending DHCP request
ike 0:Du-CISCO_0: link is idle 5 84.73.193.80->194.230.155.139:44950 dpd=1 seqno=2
ike 0:Du-CISCO_0:32: send IKEv1 DPD probe, seqno 2
ike 0:Du-CISCO_0:32: enc 88B66B54D8A1D8BC920F593B7D984736081005017EEBC00B000000500B000014BC31092E9DE25066E002AC765AA522C0000000200000000101108D2888B66B54D8A1D8BC920F593B7D98473600000002
ike 0:Du-CISCO_0:32: out 88B66B54D8A1D8BC920F593B7D984736081005017EEBC00B0000005CCC02FACCFCDA7D1F5E3A06D72D104F2551423834681C09B1FF16EBF52A83B2679F5255186E995A530FB1967202C1E0958F58D34D654CDD9521F4D0F8E2AFDAA2
ike 0:Du-CISCO_0:32: sent IKE msg (R-U-THERE): 84.73.193.80:4500->194.230.155.139:44950, len=92, id=88b66b54d8a1d8bc/920f593b7d984736:7eebc00b
ike 0: comes 194.230.155.139:44950->84.73.193.80:4500,ifindex=5....
ike 0: IKEv1 exchange=Informational id=88b66b54d8a1d8bc/920f593b7d984736:648359c7 len=92
ike 0: in 88B66B54D8A1D8BC920F593B7D98473608100501648359C70000005C4344A5503DB9211BAB073F5625F0263ABC82CA0DE0D4652775683BE1A17350BF55E1B6A401A32024DE128DCB9DC5CF7939490DD0B3A54527E773B00BEB20ECFC
ike 0:Du-CISCO_0:32: dec 88B66B54D8A1D8BC920F593B7D98473608100501648359C70000005C0B0000147F0B265FDDD81F6DC039F6681941281C000000200000000101108D2988B66B54D8A1D8BC920F593B7D9847360000000200000000000000000000000C
ike 0:Du-CISCO_0:32: notify msg received: R-U-THERE-ACK
ike 0:9 re-transmit request IP '0.0.0.0'
ike 0: comes 194.230.155.139:44950->84.73.193.80:4500,ifindex=5....
ike 0: IKEv1 exchange=Mode config id=88b66b54d8a1d8bc/920f593b7d984736:f5c29c4a len=172
ike 0: in 88B66B54D8A1D8BC920F593B7D98473608100601F5C29C4A000000AC1DD67136FD29B968E625E1C56050F66631D7F5A6FDA90F6F4E6E743E03B9DD248A074D93149B1DFFF97FBC1C724EBF55C1221DCB744280FB4CDF9565BE7898C3EC62F2A9C745FD1C818D0D4962C6A912B7912A48A856744CE94BFF73AA44C30523FFD11CC6CDEC0E6BB5AB31CCB1D39B7C60F445018F6BE6DA0625F9F456FC5C9546A073BD50EBCB5F6C02ABD8AB9581
ike 0:Du-CISCO_0:32: dec 88B66B54D8A1D8BC920F593B7D98473608100601F5C29C4A000000AC0E000014476BCC1A99162D35D07B036D1AD7C2C20000006E0100DE6E000100000002000000030000000400000005000000070026436973636F2053797374656D732056504E20436C69656E7420382E333A6950686F6E65204F53700000007002000070030000700400007006000070070000700100007008000070090000700B0000000000000000000000000000000E
ike 0:Du-CISCO_0:32: mode-cfg type 1 request 0:''
ike 0:Du-CISCO_0:32: IPv4 address requested, using DHCP
ike 0:Du-CISCO_0:32: mode-cfg type 2 request 0:''
ike 0:Du-CISCO_0:32: mode-cfg type 3 request 0:''
ike 0:Du-CISCO_0:32: mode-cfg type 4 request 0:''
ike 0:Du-CISCO_0:32: mode-cfg WINS ignored, no WINS servers configured
ike 0:Du-CISCO_0:32: mode-cfg type 5 request 0:''
ike 0:Du-CISCO_0:32: mode-cfg type 7 request 38:'436973636F2053797374656D732056504E20436C69656E7420382E333A6950686F6E65204F53'
ike 0:Du-CISCO_0:32: mode-cfg received APPLICATION_VERSION Cisco Systems VPN Client 8.3:iPhone OSp
ike 0:Du-CISCO_0:32: mode-cfg type 28672 request 0:''
ike 0:Du-CISCO_0:32: mode-cfg UNITY type 28672 requested
ike 0:Du-CISCO_0:32: mode-cfg no banner configured, ignoring
ike 0:Du-CISCO_0:32: mode-cfg type 28674 request 0:''
ike 0:Du-CISCO_0:32: mode-cfg UNITY type 28674 requested
ike 0:Du-CISCO_0:32: mode-cfg no domain configured, ignoring
ike 0:Du-CISCO_0:32: mode-cfg type 28675 request 0:''
ike 0:Du-CISCO_0:32: mode-cfg UNITY type 28675 requested
ike 0:Du-CISCO_0:32: mode-cfg UNITY type 28675 not supported, ignoring
ike 0:Du-CISCO_0:32: mode-cfg type 28676 request 0:''
ike 0:Du-CISCO_0:32: mode-cfg UNITY type 28676 requested
ike 0:Du-CISCO_0:32: mode-cfg type 28678 request 0:''
ike 0:Du-CISCO_0:32: mode-cfg UNITY type 28678 requested
ike 0:Du-CISCO_0:32: mode-cfg type 28679 request 0:''
ike 0:Du-CISCO_0:32: mode-cfg UNITY type 28679 requested
ike 0:Du-CISCO_0:32: mode-cfg type 28673 request 0:''
ike 0:Du-CISCO_0:32: mode-cfg UNITY type 28673 requested
ike 0:Du-CISCO_0:32: mode-cfg type 28680 request 0:''
ike 0:Du-CISCO_0:32: mode-cfg UNITY type 28680 requested
ike 0:Du-CISCO_0:32: mode-cfg UNITY type 28680 not supported, ignoring
ike 0:Du-CISCO_0:32: mode-cfg type 28681 request 0:''
ike 0:Du-CISCO_0:32: mode-cfg UNITY type 28681 requested
ike 0:Du-CISCO_0:32: mode-cfg no backup-gateway configured, ignoring
ike 0:Du-CISCO_0:32: mode-cfg type 28683 request 0:''
ike 0:Du-CISCO_0:32: mode-cfg attribute type 28683 not supported, ignoring
ike 0:Du-CISCO_0:32: waiting for DHCP response
ike 0:9 re-transmit request IP '0.0.0.0'
ike 0:9 re-transmit request IP '0.0.0.0'
ike 0: comes 194.230.155.139:44950->84.73.193.80:4500,ifindex=5....
ike 0: IKEv1 exchange=Mode config id=88b66b54d8a1d8bc/920f593b7d984736:f5c29c4a len=172
ike 0: in 88B66B54D8A1D8BC920F593B7D98473608100601F5C29C4A000000AC1DD67136FD29B968E625E1C56050F66631D7F5A6FDA90F6F4E6E743E03B9DD248A074D93149B1DFFF97FBC1C724EBF55C1221DCB744280FB4CDF9565BE7898C3EC62F2A9C745FD1C818D0D4962C6A912B7912A48A856744CE94BFF73AA44C30523FFD11CC6CDEC0E6BB5AB31CCB1D39B7C60F445018F6BE6DA0625F9F456FC5C9546A073BD50EBCB5F6C02ABD8AB9581
ike 0:Du-CISCO_0:32: dec 88B66B54D8A1D8BC920F593B7D98473608100601F5C29C4A000000AC0E000014476BCC1A99162D35D07B036D1AD7C2C20000006E0100DE6E000100000002000000030000000400000005000000070026436973636F2053797374656D732056504E20436C69656E7420382E333A6950686F6E65204F53700000007002000070030000700400007006000070070000700100007008000070090000700B0000000000000000000000000000000E
ike 0:Du-CISCO_0:32: mode-cfg type 1 request 0:''
ike 0:Du-CISCO_0:32: IPv4 address requested, using DHCP
ike 0:Du-CISCO_0:32: mode-cfg type 2 request 0:''
ike 0:Du-CISCO_0:32: mode-cfg type 3 request 0:''
ike 0:Du-CISCO_0:32: mode-cfg type 4 request 0:''
ike 0:Du-CISCO_0:32: mode-cfg WINS ignored, no WINS servers configured
ike 0:Du-CISCO_0:32: mode-cfg type 5 request 0:''
ike 0:Du-CISCO_0:32: mode-cfg type 7 request 38:'436973636F2053797374656D732056504E20436C69656E7420382E333A6950686F6E65204F53'
ike 0:Du-CISCO_0:32: mode-cfg received APPLICATION_VERSION Cisco Systems VPN Client 8.3:iPhone OSp
ike 0:Du-CISCO_0:32: mode-cfg type 28672 request 0:''
ike 0:Du-CISCO_0:32: mode-cfg UNITY type 28672 requested
ike 0:Du-CISCO_0:32: mode-cfg no banner configured, ignoring
ike 0:Du-CISCO_0:32: mode-cfg type 28674 request 0:''
ike 0:Du-CISCO_0:32: mode-cfg UNITY type 28674 requested
ike 0:Du-CISCO_0:32: mode-cfg no domain configured, ignoring
ike 0:Du-CISCO_0:32: mode-cfg type 28675 request 0:''
ike 0:Du-CISCO_0:32: mode-cfg UNITY type 28675 requested
ike 0:Du-CISCO_0:32: mode-cfg UNITY type 28675 not supported, ignoring
ike 0:Du-CISCO_0:32: mode-cfg type 28676 request 0:''
ike 0:Du-CISCO_0:32: mode-cfg UNITY type 28676 requested
ike 0:Du-CISCO_0:32: mode-cfg type 28678 request 0:''
ike 0:Du-CISCO_0:32: mode-cfg UNITY type 28678 requested
ike 0:Du-CISCO_0:32: mode-cfg type 28679 request 0:''
ike 0:Du-CISCO_0:32: mode-cfg UNITY type 28679 requested
ike 0:Du-CISCO_0:32: mode-cfg type 28673 request 0:''
ike 0:Du-CISCO_0:32: mode-cfg UNITY type 28673 requested
ike 0:Du-CISCO_0:32: mode-cfg type 28680 request 0:''
ike 0:Du-CISCO_0:32: mode-cfg UNITY type 28680 requested
ike 0:Du-CISCO_0:32: mode-cfg UNITY type 28680 not supported, ignoring
ike 0:Du-CISCO_0:32: mode-cfg type 28681 request 0:''
ike 0:Du-CISCO_0:32: mode-cfg UNITY type 28681 requested
ike 0:Du-CISCO_0:32: mode-cfg no backup-gateway configured, ignoring
ike 0:Du-CISCO_0:32: mode-cfg type 28683 request 0:''
ike 0:Du-CISCO_0:32: mode-cfg attribute type 28683 not supported, ignoring
ike 0:Du-CISCO_0:32: waiting for DHCP response
ike 0:Du-CISCO_0: link is idle 5 84.73.193.80->194.230.155.139:44950 dpd=1 seqno=3
ike 0:Du-CISCO_0:32: send IKEv1 DPD probe, seqno 3
ike 0:Du-CISCO_0:32: enc 88B66B54D8A1D8BC920F593B7D9847360810050110748609000000500B000014DAAFAFBE26B2D077277F5C2E12BAE542000000200000000101108D2888B66B54D8A1D8BC920F593B7D98473600000003
ike 0:Du-CISCO_0:32: out 88B66B54D8A1D8BC920F593B7D98473608100501107486090000005C994E6D8502AC5CE191D2BEBBAF3B1D07CFDDE5BC41C8642D2E8A6217AEEACE7E33CA9A50225658C5B98064CED0E4152373D92AD8B648FFFAE4DD06F840C2C6E3
ike 0:Du-CISCO_0:32: sent IKE msg (R-U-THERE): 84.73.193.80:4500->194.230.155.139:44950, len=92, id=88b66b54d8a1d8bc/920f593b7d984736:10748609
ike 0: comes 194.230.155.139:44950->84.73.193.80:4500,ifindex=5....
ike 0: IKEv1 exchange=Informational id=88b66b54d8a1d8bc/920f593b7d984736:bfa7cb11 len=92
ike 0: in 88B66B54D8A1D8BC920F593B7D98473608100501BFA7CB110000005C02547D9CD46FCAF0293328FB99B254DB1E15352E979CD7425F7F0DA839CE2E0633247BEEFD693ABEC9EF3D5AEAB8494979534395FE3CCD63C9BCFF2DF7091445
ike 0:Du-CISCO_0:32: dec 88B66B54D8A1D8BC920F593B7D98473608100501BFA7CB110000005C0B00001472242D7AD33B2AD9D3A9D0F5AAFAF911000000200000000101108D2988B66B54D8A1D8BC920F593B7D9847360000000300000000000000000000000C
ike 0:Du-CISCO_0:32: notify msg received: R-U-THERE-ACK
ike shrank heap by 122880 bytes
ike 0:9 re-transmit request IP '0.0.0.0'
ike 0: comes 194.230.155.139:44950->84.73.193.80:4500,ifindex=5....
ike 0: IKEv1 exchange=Mode config id=88b66b54d8a1d8bc/920f593b7d984736:f5c29c4a len=172
ike 0: in 88B66B54D8A1D8BC920F593B7D98473608100601F5C29C4A000000AC1DD67136FD29B968E625E1C56050F66631D7F5A6FDA90F6F4E6E743E03B9DD248A074D93149B1DFFF97FBC1C724EBF55C1221DCB744280FB4CDF9565BE7898C3EC62F2A9C745FD1C818D0D4962C6A912B7912A48A856744CE94BFF73AA44C30523FFD11CC6CDEC0E6BB5AB31CCB1D39B7C60F445018F6BE6DA0625F9F456FC5C9546A073BD50EBCB5F6C02ABD8AB9581
ike 0:Du-CISCO_0:32: dec 88B66B54D8A1D8BC920F593B7D98473608100601F5C29C4A000000AC0E000014476BCC1A99162D35D07B036D1AD7C2C20000006E0100DE6E000100000002000000030000000400000005000000070026436973636F2053797374656D732056504E20436C69656E7420382E333A6950686F6E65204F53700000007002000070030000700400007006000070070000700100007008000070090000700B0000000000000000000000000000000E
ike 0:Du-CISCO_0:32: mode-cfg type 1 request 0:''
ike 0:Du-CISCO_0:32: IPv4 address requested, using DHCP
ike 0:Du-CISCO_0:32: mode-cfg type 2 request 0:''
ike 0:Du-CISCO_0:32: mode-cfg type 3 request 0:''
ike 0:Du-CISCO_0:32: mode-cfg type 4 request 0:''
ike 0:Du-CISCO_0:32: mode-cfg WINS ignored, no WINS servers configured
ike 0:Du-CISCO_0:32: mode-cfg type 5 request 0:''
ike 0:Du-CISCO_0:32: mode-cfg type 7 request 38:'436973636F2053797374656D732056504E20436C69656E7420382E333A6950686F6E65204F53'
ike 0:Du-CISCO_0:32: mode-cfg received APPLICATION_VERSION Cisco Systems VPN Client 8.3:iPhone OSp
ike 0:Du-CISCO_0:32: mode-cfg type 28672 request 0:''
ike 0:Du-CISCO_0:32: mode-cfg UNITY type 28672 requested
ike 0:Du-CISCO_0:32: mode-cfg no banner configured, ignoring
ike 0:Du-CISCO_0:32: mode-cfg type 28674 request 0:''
ike 0:Du-CISCO_0:32: mode-cfg UNITY type 28674 requested
ike 0:Du-CISCO_0:32: mode-cfg no domain configured, ignoring
ike 0:Du-CISCO_0:32: mode-cfg type 28675 request 0:''
ike 0:Du-CISCO_0:32: mode-cfg UNITY type 28675 requested
ike 0:Du-CISCO_0:32: mode-cfg UNITY type 28675 not supported, ignoring
ike 0:Du-CISCO_0:32: mode-cfg type 28676 request 0:''
ike 0:Du-CISCO_0:32: mode-cfg UNITY type 28676 requested
ike 0:Du-CISCO_0:32: mode-cfg type 28678 request 0:''
ike 0:Du-CISCO_0:32: mode-cfg UNITY type 28678 requested
ike 0:Du-CISCO_0:32: mode-cfg type 28679 request 0:''
ike 0:Du-CISCO_0:32: mode-cfg UNITY type 28679 requested
ike 0:Du-CISCO_0:32: mode-cfg type 28673 request 0:''
ike 0:Du-CISCO_0:32: mode-cfg UNITY type 28673 requested
ike 0:Du-CISCO_0:32: mode-cfg type 28680 request 0:''
ike 0:Du-CISCO_0:32: mode-cfg UNITY type 28680 requested
ike 0:Du-CISCO_0:32: mode-cfg UNITY type 28680 not supported, ignoring
ike 0:Du-CISCO_0:32: mode-cfg type 28681 request 0:''
ike 0:Du-CISCO_0:32: mode-cfg UNITY type 28681 requested
ike 0:Du-CISCO_0:32: mode-cfg no backup-gateway configured, ignoring
ike 0:Du-CISCO_0:32: mode-cfg type 28683 request 0:''
ike 0:Du-CISCO_0:32: mode-cfg attribute type 28683 not supported, ignoring
ike 0:Du-CISCO_0:32: waiting for DHCP response
ike 0:9 abandoned request IP '0.0.0.0'
ike 0:Du-CISCO_0:32: no IP assigned
ike 0:Du-CISCO_0: link is idle 5 84.73.193.80->194.230.155.139:44950 dpd=1 seqno=4
ike 0:Du-CISCO_0:32: send IKEv1 DPD probe, seqno 4
ike 0:Du-CISCO_0:32: enc 88B66B54D8A1D8BC920F593B7D984736081005012A4F57AC000000500B00001418564CB7D237F7E81B53B39BA93B2845000000200000000101108D2888B66B54D8A1D8BC920F593B7D98473600000004
ike 0:Du-CISCO_0:32: out 88B66B54D8A1D8BC920F593B7D984736081005012A4F57AC0000005CF772728878B02F2A221E46D793C21573A9E27A3D3450350700B325705C764AA385200414D9AC368D41676346BBEEB69E855B41F0F558BF44D916BFA6ECE3C2FB
ike 0:Du-CISCO_0:32: sent IKE msg (R-U-THERE): 84.73.193.80:4500->194.230.155.139:44950, len=92, id=88b66b54d8a1d8bc/920f593b7d984736:2a4f57ac
ike 0: comes 194.230.155.139:44950->84.73.193.80:4500,ifindex=5....
ike 0: IKEv1 exchange=Informational id=88b66b54d8a1d8bc/920f593b7d984736:0f0a4799 len=92
ike 0: in 88B66B54D8A1D8BC920F593B7D984736081005010F0A47990000005CE25B4180A55996B2D3140399BC988F344DBA7E0BBB95FC45C2D4AA7354CFA154ECA9F94FED4EF6EA4F918575D8BDC2598FC0DC1E34A4D1FADEC2CBFEC88A6BB5
ike 0:Du-CISCO_0:32: dec 88B66B54D8A1D8BC920F593B7D984736081005010F0A47990000005C0B000014A7479792CD16B79626DDD9DDEC9090A1000000200000000101108D2988B66B54D8A1D8BC920F593B7D9847360000000400000000000000000000000C
ike 0:Du-CISCO_0:32: notify msg received: R-U-THERE-ACK
ike 0: comes 194.230.155.139:44950->84.73.193.80:4500,ifindex=5....
ike 0: IKEv1 exchange=Informational id=88b66b54d8a1d8bc/920f593b7d984736:41c73f23 len=92
ike 0: in 88B66B54D8A1D8BC920F593B7D9847360810050141C73F230000005C8908C36648F543BA2AC7EB5E9D37A79920C6C235B57278AC75911665590EADA8BF32F18A3758FEE3CA7E3ABEA1FDA0DE11032CD08344CA680417B72E12CEF547
ike 0:Du-CISCO_0:32: dec 88B66B54D8A1D8BC920F593B7D9847360810050141C73F230000005C0C000014E07F2D75397EB4F61FE5E2CA8AB64FA50000001C000000010110000188B66B54D8A1D8BC920F593B7D98473600000000000000000000000000000010
ike 0:Du-CISCO_0:32: recv ISAKMP SA delete 88b66b54d8a1d8bc/920f593b7d984736
ike 0:Du-CISCO_0: deleting
ike 0:Du-CISCO_0: flushing
ike 0:Du-CISCO_0: sending SNMP tunnel DOWN trap
ike 0:Du-CISCO_0: flushed
ike 0:Du-CISCO_0: delete dynamic
ike 0:Du-CISCO_0: reset NAT-T
ike 0:Du-CISCO_0: deleted
ike shrank heap by 122880 bytes
I will try / test more tomorrow
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Best to verify your DHCP server settings one more time.
When you can, post the output from 'show system dhcp server' here.
Regards, Chris McMullan Fortinet Ottawa
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Good morning
It's strange. With the show command, there is no output. But on the webgui i see the entries.
Internal interface:
DHCP Server Enable Advanced... Mode Relay DHCP Server IP 192.168.222.xx Type IPsec
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Maybe any changes weren't really committed?
Try the command again from within the DHCP server sub-configuration:
config system dhcp server
edit ? //--see if there are numbered entries; if there are any:
edit <server_index_int>
{get | show}
You can use either 'get' or 'show', but 'get' would reveal all parameters, whereas 'show' would only show you differences from the defaults, or else what would appear in a configuration backup.
Regards, Chris McMullan Fortinet Ottawa
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
There ist nothing.
FGT70D (server) # get
FGT70D (server) # show
FGT70D (server) # edit
FGT70D (server) # show full-configuration
FGT70D (server) #
Interface config:
FGT70D (internal) # get
name : internal
vdom : root
cli-conn-status : 0
mode : static
dhcp-relay-service : enable
ip : 192.168.222.101 255.255.255.0
allowaccess : ping https ssh http fgfm capwap
pptp-client : disable
arpforward : enable
broadcast-forward : disable
bfd : global
l2forward : disable
icmp-redirect : enable
vlanforward : disable
stpforward : disable
ips-sniffer-mode : disable
ident-accept : disable
ipmac : disable
subst : disable
substitute-dst-mac : 00:00:00:00:00:00
status : up
netbios-forward : disable
wins-ip : 0.0.0.0
type : hard-switch
netflow-sampler : disable
sflow-sampler : disable
sample-rate : 2000
polling-interval : 20
sample-direction : both
explicit-web-proxy : disable
explicit-ftp-proxy : disable
tcp-mss : 0
inbandwidth : 0
outbandwidth : 0
spillover-threshold : 0
weight : 0
external : disable
devindex : 28
description :
alias :
l2tp-client : disable
security-mode : none
device-identification: disable
lldp-transmission : vdom
listen-forticlient-connection: disable
snmp-index : 5
secondary-IP : disable
ipv6:
ip6-mode : static
ip6-allowaccess :
ip6-reachable-time : 0
ip6-retrans-time : 0
ip6-hop-limit : 0
ip6-address : ::/0
ip6-extra-addr:
ip6-send-adv : disable
autoconf : disable
dhcp6-relay-service : disable
dhcp-relay-ip : "192.168.222.13"
dhcp-relay-type : ipsec
mtu-override : disable
wccp : disable
drop-overlapped-fragment: disable
drop-fragment : disable
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
I think I was fixated on the DHCP server aspect, and missed the relay.
The relay should be configured on the listening interface. The documentation is thin on relaying IPSec DHCP requests, so I'm going to assume you'll have to enable the relay on the tunnel interface instead of internal. The FortiGate will determine the exit interface for the relayed requests based on its routing table, to find the destination server.
Try disabling the relay on internal and configure it on Du-Cisco instead.
Regards, Chris McMullan Fortinet Ottawa
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Good Morning
No success with disabling on internal and enable on Du-Cisco interface :(
configs:
Interface
FGT70D (Du-CISCO) # get
name : Du-CISCO
vdom : root
cli-conn-status : 0
priority : 0
dhcp-relay-service : enable
ip : 0.0.0.0 255.255.255.255
allowaccess :
pptp-client : disable
arpforward : enable
broadcast-forward : disable
bfd : global
l2forward : disable
icmp-redirect : enable
vlanforward : disable
stpforward : disable
ips-sniffer-mode : disable
ident-accept : disable
ipmac : disable
status : up
netbios-forward : disable
wins-ip : 0.0.0.0
type : tunnel
netflow-sampler : disable
sflow-sampler : disable
sample-rate : 2000
polling-interval : 20
sample-direction : both
explicit-web-proxy : disable
explicit-ftp-proxy : disable
tcp-mss : 0
inbandwidth : 0
outbandwidth : 0
spillover-threshold : 0
weight : 0
external : disable
remote-ip : 0.0.0.0
devindex : 29
description :
alias :
l2tp-client : disable
security-mode : none
listen-forticlient-connection: disable
snmp-index : 6
ipv6:
ip6-mode : static
ip6-allowaccess :
ip6-reachable-time : 0
ip6-retrans-time : 0
ip6-hop-limit : 0
ip6-address : ::/0
ip6-extra-addr:
ip6-send-adv : disable
autoconf : disable
dhcp6-relay-service : disable
dhcp-relay-ip : "192.168.222.13"
dhcp-relay-type : ipsec
dhcp-client-identifier:
detected-peer-mtu : 0
lcp-echo-interval : 5
lcp-max-echo-fails : 3
auth-type : auto
interface : wan1
Phase1
FGT70D (phase1-interface) # get Du-CISCO
name : Du-CISCO
type : dynamic
interface : wan1
ip-version : 4
ike-version : 1
local-gw : 0.0.0.0
nattraversal : enable
keylife : 86400
authmethod : psk
mode : main
peertype : any
mode-cfg : enable
proposal : aes256-md5 aes256-sha1
add-route : enable
localid :
localid-type : auto
negotiate-timeout : 30
fragmentation : enable
dpd : enable
forticlient-enforcement: disable
comments : VPN: Du-CISCO (Created by VPN wizard)
npu-offload : enable
dhgrp : 2
wizard-type : dialup-cisco
xauthtype : auto
authusrgrp : VPN-Users
default-gw : 0.0.0.0
default-gw-priority : 0
assign-ip : enable
mode-cfg-ip-version : 4
assign-ip-from : dhcp
dns-mode : auto
ipv4-split-include :
split-include-service:
unity-support : enable
domain :
banner :
include-local-lan : disable
save-password : disable
client-auto-negotiate: disable
client-keep-alive : disable
backup-gateway:
psksecret : *
keepalive : 10
distance : 15
priority : 0
dpd-retrycount : 3
dpd-retryinterval : 5
xauthexpire : on-disconnect
Phase2:
FGT70D (phase2-interface) # get Du-CISCO
name : Du-CISCO
phase1name : Du-CISCO
proposal : aes256-md5 aes256-sha1
pfs : disable
replay : enable
keepalive : enable
add-route : phase1
keylife-type : seconds
single-source : disable
route-overlap : use-new
encapsulation : tunnel-mode
comments : VPN: Du-CISCO (Created by VPN wizard)
protocol : 0
src-addr-type : subnet
src-port : 0
dst-addr-type : subnet
dst-port : 0
keylifeseconds : 43200
src-subnet : 0.0.0.0 0.0.0.0
dst-subnet : 0.0.0.0 0.0.0.0
Diag Log:
FGT70D # ike 0: comes 194.230.155.139:58373->84.73.193.80:500,ifindex=5....
ike 0: IKEv1 exchange=Identity Protection id=4cef98663231a7cc/0000000000000000 len=596
ike 0: in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
ike 0:4cef98663231a7cc/0000000000000000:40: responder: main mode get 1st message...
ike 0:4cef98663231a7cc/0000000000000000:40: VID RFC 3947 4A131C81070358455C5728F20E95452F
ike 0:4cef98663231a7cc/0000000000000000:40: VID unknown (16): 4DF37928E9FC4FD1B3262170D515C662
ike 0:4cef98663231a7cc/0000000000000000:40: VID draft-ietf-ipsec-nat-t-ike-08 8F8D83826D246B6FC7A8A6A428C11DE8
ike 0:4cef98663231a7cc/0000000000000000:40: VID draft-ietf-ipsec-nat-t-ike-07 439B59F8BA676C4C7737AE22EAB8F582
ike 0:4cef98663231a7cc/0000000000000000:40: VID draft-ietf-ipsec-nat-t-ike-06 4D1E0E136DEAFA34C4F3EA9F02EC7285
ike 0:4cef98663231a7cc/0000000000000000:40: VID draft-ietf-ipsec-nat-t-ike-05 80D0BB3DEF54565EE84645D4C85CE3EE
ike 0:4cef98663231a7cc/0000000000000000:40: VID draft-ietf-ipsec-nat-t-ike-04 9909B64EED937C6573DE52ACE952FA6B
ike 0:4cef98663231a7cc/0000000000000000:40: VID draft-ietf-ipsec-nat-t-ike-03 7D9419A65310CA6F2C179D9215529D56
ike 0:4cef98663231a7cc/0000000000000000:40: VID draft-ietf-ipsec-nat-t-ike-02 CD60464335DF21F87CFDB2FC68B6A448
ike 0:4cef98663231a7cc/0000000000000000:40: VID draft-ietf-ipsec-nat-t-ike-02\n 90CB80913EBB696E086381B5EC427B1F
ike 0:4cef98663231a7cc/0000000000000000:40: VID draft-ietf-ipsra-isakmp-xauth-06.txt 09002689DFD6B712
ike 0:4cef98663231a7cc/0000000000000000:40: VID CISCO-UNITY 12F5F28C457168A9702D9FE274CC0100
ike 0:4cef98663231a7cc/0000000000000000:40: VID FRAGMENTATION 4048B7D56EBCE88525E7DE7F00D6C2D380000000
ike 0:4cef98663231a7cc/0000000000000000:40: VID DPD AFCAD71368A1F1C96B8696FC77570100
ike 0: cache rebuild start
ike 0:Du-CISCO: cached as dynamic
ike 0:_BOOTSTRAP5_: failed to set local gateway to 84.73.193.80: 2 No such file or directory
ike 0:_BOOTSTRAP5_: cached as dynamic
ike 0: cache rebuild done
ike 0:4cef98663231a7cc/0000000000000000:40: negotiation result
ike 0:4cef98663231a7cc/0000000000000000:40: proposal id = 1:
ike 0:4cef98663231a7cc/0000000000000000:40: protocol id = ISAKMP:
ike 0:4cef98663231a7cc/0000000000000000:40: trans_id = KEY_IKE.
ike 0:4cef98663231a7cc/0000000000000000:40: encapsulation = IKE/none
ike 0:4cef98663231a7cc/0000000000000000:40: type=OAKLEY_ENCRYPT_ALG, val=AES_CBC.
ike 0:4cef98663231a7cc/0000000000000000:40: type=OAKLEY_HASH_ALG, val=MD5.
ike 0:4cef98663231a7cc/0000000000000000:40: type=AUTH_METHOD, val=PRESHARED_KEY_XAUTH_I.
ike 0:4cef98663231a7cc/0000000000000000:40: type=OAKLEY_GROUP, val=MODP1024.
ike 0:4cef98663231a7cc/0000000000000000:40: ISAKMP SA lifetime=86400
ike 0:4cef98663231a7cc/0000000000000000:40: SA proposal chosen, matched gateway Du-CISCO
ike 0:Du-CISCO:40: DPD negotiated
ike 0:Du-CISCO:40: XAUTHv6 negotiated
ike 0:Du-CISCO:40: peer supports UNITY
ike 0:Du-CISCO:40: unsupported NAT-T version draft-ietf-ipsec-nat-t-ike-04
ike 0:Du-CISCO:40: unsupported NAT-T version draft-ietf-ipsec-nat-t-ike-05
ike 0:Du-CISCO:40: unsupported NAT-T version draft-ietf-ipsec-nat-t-ike-06
ike 0:Du-CISCO:40: unsupported NAT-T version draft-ietf-ipsec-nat-t-ike-07
ike 0:Du-CISCO:40: unsupported NAT-T version draft-ietf-ipsec-nat-t-ike-08
ike 0:Du-CISCO:40: selected NAT-T version: RFC 3947
ike 0:Du-CISCO:40: cookie 4cef98663231a7cc/65b1193132351146
ike 0:Du-CISCO:40: out 4CEF98663231A7CC65B11931323511460110020000000000000000DC0D00003800000001000000010000002C010100010000002403010000800B0001800C0E1080010007800E01008003FDE980020001800400020D0000144A131C81070358455C5728F20E95452F0D000014AFCAD71368A1F1C96B8696FC775701000D00000C09002689DFD6B7120D00001412F5F28C457168A9702D9FE274CC02040D0000148299031757A36082C6A621DE0005029E0D0000144048B7D56EBCE88525E7DE7F00D6C2D3000000184048B7D56EBCE88525E7DE7F00D6C2D3C0000000
ike 0:Du-CISCO:40: sent IKE msg (ident_r1send): 84.73.193.80:500->194.230.155.139:58373, len=220, id=4cef98663231a7cc/65b1193132351146
ike 0: comes 194.230.155.139:58373->84.73.193.80:500,ifindex=5....
ike 0: IKEv1 exchange=Identity Protection id=4cef98663231a7cc/65b1193132351146 len=220
ike 0: in 4CEF98663231A7CC65B11931323511460410020000000000000000DC0A0000845F9E83DA0D1F811E028ECD0864279951F4E23EF3206FB081210D9B98ABD372DF6116EB9624C79788397D59BE67445233B09C3D5BEA09EEF84401AC67A776912D49EA0157DD3B91D54AB00E0ECBA280DE3F4912D0B61908560F8054E32E8E04E6CA210C9B6068337AFB63E8FF510BADBB98BAB5CD2EB25557C958323F2982787514000014CC22B12ECD1D3CCE8154B2CF686757B814000014F489FEE377E9A638637127BA9DEB0CEE000000149993A4A444072B2DAF1AC5EE8B7C4401
ike 0:Du-CISCO:40: responder:main mode get 2nd message...
ike 0:Du-CISCO:40: NAT detected: PEER
ike 0:Du-CISCO:40: out 4CEF98663231A7CC65B11931323511460410020000000000000000DC0A000084B8446B58C87B6C4FF5DD67F041FE9BE339B4668FA2EDC70CAD6948397A55424E0EB88AD351E1130B59509F3860B90E51D3C63ABD17712FD72C292EB2FC38FE4174E0B8333AA5D52F8BB9065D236C05F1BCBC7CB37982E5276DAE49E5CD58FD793914F9C56BE62AF27B7C93821A25A84A37A7BE88941E319DCB7627B058F3CE2E140000141C4DEFB58146A79FAD8CCB86271FAEA31400001476ABC4961F56AF2AC640762BFA30281900000014F489FEE377E9A638637127BA9DEB0CEE
ike 0:Du-CISCO:40: sent IKE msg (ident_r2send): 84.73.193.80:500->194.230.155.139:58373, len=220, id=4cef98663231a7cc/65b1193132351146
ike 0:Du-CISCO:40: ISAKMP SA 4cef98663231a7cc/65b1193132351146 key 32:878877CE3E81DBCBBD057030C6FAE8864F458D2484F9C22D6BDE6A551B099B19
ike 0: comes 194.230.155.139:43387->84.73.193.80:4500,ifindex=5....
ike 0: IKEv1 exchange=Identity Protection id=4cef98663231a7cc/65b1193132351146 len=92
ike 0: in 4CEF98663231A7CC65B119313235114605100201000000000000005CFEF4787DB35B2DBD2AFC20861EBCE057E8E4FBAF6240221D87CF604EB82E73C3B62904B6AD35FC591DBE738A5C028D00C21E65816DA3058979D4787A0FE288B3
ike 0:Du-CISCO:40: responder: main mode get 3rd message...
ike 0:Du-CISCO:40: dec 4CEF98663231A7CC65B119313235114605100201000000000000005C0800000C011101F40A97169E0B000014874A7010F9E1D06F2FA9BA0870004D3F0000001C00000001011060024CEF98663231A7CC65B119313235114600000004
ike 0:Du-CISCO:40: received p1 notify type INITIAL-CONTACT
ike 0:Du-CISCO:40: peer identifier IPV4_ADDR 10.151.22.158
ike 0:Du-CISCO:40: PSK authentication succeeded
ike 0:Du-CISCO:40: authentication OK
ike 0:Du-CISCO:40: enc 4CEF98663231A7CC65B119313235114605100201000000000000003C0800000C010000005449C15000000014A2DE62158D03BED4FC916A3A5A384CE4
ike 0:Du-CISCO:40: remote port change 58373 -> 43387
ike 0:Du-CISCO:40: out 4CEF98663231A7CC65B119313235114605100201000000000000004CA0D0EA63CF9511D1C5FECD5320A08E86F50CE28934F19649995298C0DAE02985CD97A70935297EBC3865519EFFB52E25
ike 0:Du-CISCO:40: sent IKE msg (ident_r3send): 84.73.193.80:4500->194.230.155.139:43387, len=76, id=4cef98663231a7cc/65b1193132351146
ike 0:Du-CISCO: adding new dynamic tunnel for 194.230.155.139:43387
ike 0:Du-CISCO_0: added new dynamic tunnel for 194.230.155.139:43387
ike 0:Du-CISCO_0:40: established IKE SA 4cef98663231a7cc/65b1193132351146
ike 0:Du-CISCO_0:40: processing INITIAL-CONTACT
ike 0:Du-CISCO_0: flushing
ike 0:Du-CISCO_0: flushed
ike 0:Du-CISCO_0:40: processed INITIAL-CONTACT
ike 0:Du-CISCO_0:40: initiating XAUTH.
ike 0:Du-CISCO_0:40: sending XAUTH request
ike 0:Du-CISCO_0:40: enc 4CEF98663231A7CC65B1193132351146081006010621CC7D000000440E00001491CC60719E2DC9715F677CAE57EC7C6A000000140100DA0FC088000040890000408A0000
ike 0:Du-CISCO_0:40: out 4CEF98663231A7CC65B1193132351146081006010621CC7D0000004C08B5AF32F79CA6DE216A1C1E99DC5420514D751B415227F0D8C15D4C8AECB7D13CAD8789DF6BB3FAFF8A49C2F339F4A0
ike 0:Du-CISCO_0:40: sent IKE msg (cfg_send): 84.73.193.80:4500->194.230.155.139:43387, len=76, id=4cef98663231a7cc/65b1193132351146:0621cc7d
ike 0:Du-CISCO_0:40: peer has not completed XAUTH exchange
ike 0:Du-CISCO_0:40: out 4CEF98663231A7CC65B1193132351146081006010621CC7D0000004C08B5AF32F79CA6DE216A1C1E99DC5420514D751B415227F0D8C15D4C8AECB7D13CAD8789DF6BB3FAFF8A49C2F339F4A0
ike 0:Du-CISCO_0:40: sent IKE msg (CFG_RETRANS): 84.73.193.80:4500->194.230.155.139:43387, len=76, id=4cef98663231a7cc/65b1193132351146:0621cc7d
ike 0:Du-CISCO_0: link is idle 5 84.73.193.80->194.230.155.139:43387 dpd=1 seqno=1
ike 0:Du-CISCO_0:40: send IKEv1 DPD probe, seqno 1
ike 0:Du-CISCO_0:40: enc 4CEF98663231A7CC65B119313235114608100501B043FBC2000000500B000014A431E6004896BC40FE8536E5E3484B48000000200000000101108D284CEF98663231A7CC65B119313235114600000001
ike 0:Du-CISCO_0:40: out 4CEF98663231A7CC65B119313235114608100501B043FBC20000005C971E6EF627C3738409EA0BD404390AE01D2854524C7C9DB3C0EF9B676CEEFAA5FFE41D4A1EA5EBBCF2AD5AB3EDAE04CB93D97A75CE1EF7269E82A4767673A0EC
ike 0:Du-CISCO_0:40: sent IKE msg (R-U-THERE): 84.73.193.80:4500->194.230.155.139:43387, len=92, id=4cef98663231a7cc/65b1193132351146:b043fbc2
ike 0: comes 194.230.155.139:43387->84.73.193.80:4500,ifindex=5....
ike 0: IKEv1 exchange=Informational id=4cef98663231a7cc/65b1193132351146:364cd57e len=92
ike 0: in 4CEF98663231A7CC65B119313235114608100501364CD57E0000005C8FC9A07CC6ED252D60D3A687D27DAAB220E1D08DE64794759C4F6F86660E7C2D009F2EEE60DF2F1107A95564BB3508537721741E75CD29C1566C270DA7E9FFD7
ike 0:Du-CISCO_0:40: dec 4CEF98663231A7CC65B119313235114608100501364CD57E0000005C0B00001444FF7A1DB7DC3FB5D29556BB666B0625000000200000000101108D294CEF98663231A7CC65B11931323511460000000100000000000000000000000C
ike 0:Du-CISCO_0:40: notify msg received: R-U-THERE-ACK
ike 0:Du-CISCO_0:40: out 4CEF98663231A7CC65B1193132351146081006010621CC7D0000004C08B5AF32F79CA6DE216A1C1E99DC5420514D751B415227F0D8C15D4C8AECB7D13CAD8789DF6BB3FAFF8A49C2F339F4A0
ike 0:Du-CISCO_0:40: sent IKE msg (CFG_RETRANS): 84.73.193.80:4500->194.230.155.139:43387, len=76, id=4cef98663231a7cc/65b1193132351146:0621cc7d
ike shrank heap by 122880 bytes
ike 0:Du-CISCO_0: link is idle 5 84.73.193.80->194.230.155.139:43387 dpd=1 seqno=2
ike 0:Du-CISCO_0:40: send IKEv1 DPD probe, seqno 2
ike 0:Du-CISCO_0:40: enc 4CEF98663231A7CC65B1193132351146081005018CE1E243000000500B0000149CC8F381D7834057D1A3722C34D6DB1E000000200000000101108D284CEF98663231A7CC65B119313235114600000002
ike 0:Du-CISCO_0:40: out 4CEF98663231A7CC65B1193132351146081005018CE1E2430000005C1E2EA83D06781BFBB38659FA7A5B326F9ECFAF7415DA189B33F82C241EB0C00249DCFD54CF6A671FADC2B348DC3250D6EBF1CBD1E4394EFB6D74AAB9E9280196
ike 0:Du-CISCO_0:40: sent IKE msg (R-U-THERE): 84.73.193.80:4500->194.230.155.139:43387, len=92, id=4cef98663231a7cc/65b1193132351146:8ce1e243
ike 0: comes 194.230.155.139:43387->84.73.193.80:4500,ifindex=5....
ike 0: IKEv1 exchange=Informational id=4cef98663231a7cc/65b1193132351146:50e1f417 len=92
ike 0: in 4CEF98663231A7CC65B11931323511460810050150E1F4170000005C831F9418487060390459F3452072261624CA9F127D0DD17CF1F74E4CB67FBE01FA6D6EE6BE90102F246AC965D0EE217E6A5F795A415E3AE85EA6DD36CF2A87EF
ike 0:Du-CISCO_0:40: dec 4CEF98663231A7CC65B11931323511460810050150E1F4170000005C0B00001443EE36D6C5C8E349D82CD1AF45E1D5D9000000200000000101108D294CEF98663231A7CC65B11931323511460000000200000000000000000000000C
ike 0:Du-CISCO_0:40: notify msg received: R-U-THERE-ACK
ike 0: comes 194.230.155.139:43387->84.73.193.80:4500,ifindex=5....
ike 0: IKEv1 exchange=Mode config id=4cef98663231a7cc/65b1193132351146:0621cc7d len=92
ike 0: in 4CEF98663231A7CC65B1193132351146081006010621CC7D0000005C386CBFF8CBB151BCC6D3DDE7E821C360B3768306B2E8D72959BB21F799C6E3A4CD4459CBC85AFC258229245937DB84C9041FCA712AE7C36B0DC67FC45425E9F7
ike 0:Du-CISCO_0:40: dec 4CEF98663231A7CC65B1193132351146081006010621CC7D0000005C0E000014C6E7D4E154CF8B292C9F506D83A5839E000000200200DA0040890008636872696869747A408A00085369723168656C6C00000000000000000000000C
ike 0:Du-CISCO_0:40: received XAUTH_USER_NAME 'chrihitz' length 8
ike 0:Du-CISCO_0:40: received XAUTH_USER_PASSWORD length 8
ike 0:Du-CISCO_0: XAUTH user "chrihitz"
ike 0:Du-CISCO: auth group VPN-Users
ike 0:Du-CISCO_0: XAUTH succeeded for user "chrihitz" group "VPN-Users"
ike 0:Du-CISCO_0:40: enc 4CEF98663231A7CC65B119313235114608100601BFB1722E0000003C0E000014E870A6A6066B571E204494E8072104280000000C0300DA00C08F0001
ike 0:Du-CISCO_0:40: out 4CEF98663231A7CC65B119313235114608100601BFB1722E0000004C4ED9D87E1219A9E3C8454253699F5170317E51A6318AB0404B14DC18BAE2C9CB34B91CC139EFDB69012379B1667D782E
ike 0:Du-CISCO_0:40: sent IKE msg (cfg_send): 84.73.193.80:4500->194.230.155.139:43387, len=76, id=4cef98663231a7cc/65b1193132351146:bfb1722e
ike 0: comes 194.230.155.139:43387->84.73.193.80:4500,ifindex=5....
ike 0: IKEv1 exchange=Mode config id=4cef98663231a7cc/65b1193132351146:bfb1722e len=76
ike 0: in 4CEF98663231A7CC65B119313235114608100601BFB1722E0000004C25FDFCA536B9C58721D86190CEAF5749465EDC66872B4B648D0425268D2CBA9A475497E87C4B257C6079D51D8C508B65
ike 0:Du-CISCO_0:40: dec 4CEF98663231A7CC65B119313235114608100601BFB1722E0000004C0E00001438D666A5AD54D3A1F6CD43DB8801ADD30000000C0400DA00C08F000000000000000000000000000000000010
ike 0: comes 194.230.155.139:43387->84.73.193.80:4500,ifindex=5....
ike 0: IKEv1 exchange=Mode config id=4cef98663231a7cc/65b1193132351146:880d28c5 len=172
ike 0: in 4CEF98663231A7CC65B119313235114608100601880D28C5000000ACF7411B2B989F53DC9F811761EA2764DEED41ED4B814EA9E3BF39B6E3D411FD98E4DC5B87103F8E614FCCD323F58EB45364F4DF9C86F832BBF634A3A1E16E3DC3CAA0A948490AE32D5663D329402C34D8768FDC6A6390039D4FE52D301FD3B1168CD522A328AD93717C3297AB84AD78E407F0DBEEF33C0B9910F2AB0C8111CAADFF957396A1A3F9D455DF98B5E75B27B7
ike 0:Du-CISCO_0:40: dec 4CEF98663231A7CC65B119313235114608100601880D28C5000000AC0E000014D87F72AF36CA6D9715140C74161222900000006E0100A671000100000002000000030000000400000005000000070026436973636F2053797374656D732056504E20436C69656E7420382E333A6950686F6E65204F53700000007002000070030000700400007006000070070000700100007008000070090000700B0000000000000000000000000000000E
ike 0:Du-CISCO_0:40: mode-cfg type 1 request 0:''
ike 0:Du-CISCO_0:40: IPv4 address requested, using DHCP
ike 0:Du-CISCO_0:40: mode-cfg type 2 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg type 3 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg type 4 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg WINS ignored, no WINS servers configured
ike 0:Du-CISCO_0:40: mode-cfg type 5 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg type 7 request 38:'436973636F2053797374656D732056504E20436C69656E7420382E333A6950686F6E65204F53'
ike 0:Du-CISCO_0:40: mode-cfg received APPLICATION_VERSION Cisco Systems VPN Client 8.3:iPhone OSp
ike 0:Du-CISCO_0:40: mode-cfg type 28672 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28672 requested
ike 0:Du-CISCO_0:40: mode-cfg no banner configured, ignoring
ike 0:Du-CISCO_0:40: mode-cfg type 28674 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28674 requested
ike 0:Du-CISCO_0:40: mode-cfg no domain configured, ignoring
ike 0:Du-CISCO_0:40: mode-cfg type 28675 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28675 requested
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28675 not supported, ignoring
ike 0:Du-CISCO_0:40: mode-cfg type 28676 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28676 requested
ike 0:Du-CISCO_0:40: mode-cfg type 28678 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28678 requested
ike 0:Du-CISCO_0:40: mode-cfg type 28679 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28679 requested
ike 0:Du-CISCO_0:40: mode-cfg type 28673 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28673 requested
ike 0:Du-CISCO_0:40: mode-cfg type 28680 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28680 requested
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28680 not supported, ignoring
ike 0:Du-CISCO_0:40: mode-cfg type 28681 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28681 requested
ike 0:Du-CISCO_0:40: mode-cfg no backup-gateway configured, ignoring
ike 0:Du-CISCO_0:40: mode-cfg type 28683 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg attribute type 28683 not supported, ignoring
ike 0:Du-CISCO_0:40: sending DHCP request
ike 0:22 re-transmit request IP '0.0.0.0'
ike 0: comes 194.230.155.139:43387->84.73.193.80:4500,ifindex=5....
ike 0: IKEv1 exchange=Mode config id=4cef98663231a7cc/65b1193132351146:880d28c5 len=172
ike 0: in 4CEF98663231A7CC65B119313235114608100601880D28C5000000ACF7411B2B989F53DC9F811761EA2764DEED41ED4B814EA9E3BF39B6E3D411FD98E4DC5B87103F8E614FCCD323F58EB45364F4DF9C86F832BBF634A3A1E16E3DC3CAA0A948490AE32D5663D329402C34D8768FDC6A6390039D4FE52D301FD3B1168CD522A328AD93717C3297AB84AD78E407F0DBEEF33C0B9910F2AB0C8111CAADFF957396A1A3F9D455DF98B5E75B27B7
ike 0:Du-CISCO_0:40: dec 4CEF98663231A7CC65B119313235114608100601880D28C5000000AC0E000014D87F72AF36CA6D9715140C74161222900000006E0100A671000100000002000000030000000400000005000000070026436973636F2053797374656D732056504E20436C69656E7420382E333A6950686F6E65204F53700000007002000070030000700400007006000070070000700100007008000070090000700B0000000000000000000000000000000E
ike 0:Du-CISCO_0:40: mode-cfg type 1 request 0:''
ike 0:Du-CISCO_0:40: IPv4 address requested, using DHCP
ike 0:Du-CISCO_0:40: mode-cfg type 2 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg type 3 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg type 4 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg WINS ignored, no WINS servers configured
ike 0:Du-CISCO_0:40: mode-cfg type 5 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg type 7 request 38:'436973636F2053797374656D732056504E20436C69656E7420382E333A6950686F6E65204F53'
ike 0:Du-CISCO_0:40: mode-cfg received APPLICATION_VERSION Cisco Systems VPN Client 8.3:iPhone OSp
ike 0:Du-CISCO_0:40: mode-cfg type 28672 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28672 requested
ike 0:Du-CISCO_0:40: mode-cfg no banner configured, ignoring
ike 0:Du-CISCO_0:40: mode-cfg type 28674 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28674 requested
ike 0:Du-CISCO_0:40: mode-cfg no domain configured, ignoring
ike 0:Du-CISCO_0:40: mode-cfg type 28675 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28675 requested
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28675 not supported, ignoring
ike 0:Du-CISCO_0:40: mode-cfg type 28676 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28676 requested
ike 0:Du-CISCO_0:40: mode-cfg type 28678 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28678 requested
ike 0:Du-CISCO_0:40: mode-cfg type 28679 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28679 requested
ike 0:Du-CISCO_0:40: mode-cfg type 28673 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28673 requested
ike 0:Du-CISCO_0:40: mode-cfg type 28680 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28680 requested
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28680 not supported, ignoring
ike 0:Du-CISCO_0:40: mode-cfg type 28681 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28681 requested
ike 0:Du-CISCO_0:40: mode-cfg no backup-gateway configured, ignoring
ike 0:Du-CISCO_0:40: mode-cfg type 28683 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg attribute type 28683 not supported, ignoring
ike 0:Du-CISCO_0:40: waiting for DHCP response
ike 0:22 re-transmit request IP '0.0.0.0'
ike 0:Du-CISCO_0: link is idle 5 84.73.193.80->194.230.155.139:43387 dpd=1 seqno=3
ike 0:Du-CISCO_0:40: send IKEv1 DPD probe, seqno 3
ike 0:Du-CISCO_0:40: enc 4CEF98663231A7CC65B1193132351146081005015229E94B000000500B000014FCC1C6EE416F8AD8499F2E9A50BC4649000000200000000101108D284CEF98663231A7CC65B119313235114600000003
ike 0:Du-CISCO_0:40: out 4CEF98663231A7CC65B1193132351146081005015229E94B0000005C528C24354459A291B330D1A6AE689CCABFF2A5837A5B0D27DD7DE2E0C6238EA93052A85C5A181402CB6CFC2E309B5EE2D7207FC9990F3120152B8521912DB928
ike 0:Du-CISCO_0:40: sent IKE msg (R-U-THERE): 84.73.193.80:4500->194.230.155.139:43387, len=92, id=4cef98663231a7cc/65b1193132351146:5229e94b
ike 0: comes 194.230.155.139:43387->84.73.193.80:4500,ifindex=5....
ike 0: IKEv1 exchange=Informational id=4cef98663231a7cc/65b1193132351146:472b1658 len=92
ike 0: in 4CEF98663231A7CC65B119313235114608100501472B16580000005CB366B68D874889EEB4971EB2F1BCDC1FD47DB4E4B329E0E357EA380EC764A17C8E9D3FACE63C785A52B30C4B6F19B545605ED2E89B61A7366A62C4240D6D5C48
ike 0:Du-CISCO_0:40: dec 4CEF98663231A7CC65B119313235114608100501472B16580000005C0B000014156230BB1FF4E21911D3768C864BF5AE000000200000000101108D294CEF98663231A7CC65B11931323511460000000300000000000000000000000C
ike 0:Du-CISCO_0:40: notify msg received: R-U-THERE-ACK
ike 0:22 re-transmit request IP '0.0.0.0'
ike 0: comes 194.230.155.139:43387->84.73.193.80:4500,ifindex=5....
ike 0: IKEv1 exchange=Mode config id=4cef98663231a7cc/65b1193132351146:880d28c5 len=172
ike 0: in 4CEF98663231A7CC65B119313235114608100601880D28C5000000ACF7411B2B989F53DC9F811761EA2764DEED41ED4B814EA9E3BF39B6E3D411FD98E4DC5B87103F8E614FCCD323F58EB45364F4DF9C86F832BBF634A3A1E16E3DC3CAA0A948490AE32D5663D329402C34D8768FDC6A6390039D4FE52D301FD3B1168CD522A328AD93717C3297AB84AD78E407F0DBEEF33C0B9910F2AB0C8111CAADFF957396A1A3F9D455DF98B5E75B27B7
ike 0:Du-CISCO_0:40: dec 4CEF98663231A7CC65B119313235114608100601880D28C5000000AC0E000014D87F72AF36CA6D9715140C74161222900000006E0100A671000100000002000000030000000400000005000000070026436973636F2053797374656D732056504E20436C69656E7420382E333A6950686F6E65204F53700000007002000070030000700400007006000070070000700100007008000070090000700B0000000000000000000000000000000E
ike 0:Du-CISCO_0:40: mode-cfg type 1 request 0:''
ike 0:Du-CISCO_0:40: IPv4 address requested, using DHCP
ike 0:Du-CISCO_0:40: mode-cfg type 2 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg type 3 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg type 4 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg WINS ignored, no WINS servers configured
ike 0:Du-CISCO_0:40: mode-cfg type 5 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg type 7 request 38:'436973636F2053797374656D732056504E20436C69656E7420382E333A6950686F6E65204F53'
ike 0:Du-CISCO_0:40: mode-cfg received APPLICATION_VERSION Cisco Systems VPN Client 8.3:iPhone OSp
ike 0:Du-CISCO_0:40: mode-cfg type 28672 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28672 requested
ike 0:Du-CISCO_0:40: mode-cfg no banner configured, ignoring
ike 0:Du-CISCO_0:40: mode-cfg type 28674 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28674 requested
ike 0:Du-CISCO_0:40: mode-cfg no domain configured, ignoring
ike 0:Du-CISCO_0:40: mode-cfg type 28675 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28675 requested
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28675 not supported, ignoring
ike 0:Du-CISCO_0:40: mode-cfg type 28676 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28676 requested
ike 0:Du-CISCO_0:40: mode-cfg type 28678 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28678 requested
ike 0:Du-CISCO_0:40: mode-cfg type 28679 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28679 requested
ike 0:Du-CISCO_0:40: mode-cfg type 28673 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28673 requested
ike 0:Du-CISCO_0:40: mode-cfg type 28680 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28680 requested
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28680 not supported, ignoring
ike 0:Du-CISCO_0:40: mode-cfg type 28681 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28681 requested
ike 0:Du-CISCO_0:40: mode-cfg no backup-gateway configured, ignoring
ike 0:Du-CISCO_0:40: mode-cfg type 28683 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg attribute type 28683 not supported, ignoring
ike 0:Du-CISCO_0:40: waiting for DHCP response
ike 0:22 re-transmit request IP '0.0.0.0'
ike 0:Du-CISCO_0: link is idle 5 84.73.193.80->194.230.155.139:43387 dpd=1 seqno=4
ike 0:Du-CISCO_0:40: send IKEv1 DPD probe, seqno 4
ike 0:Du-CISCO_0:40: enc 4CEF98663231A7CC65B119313235114608100501B897D598000000500B0000146564C8180B82A3A6336949C09206459C000000200000000101108D284CEF98663231A7CC65B119313235114600000004
ike 0:Du-CISCO_0:40: out 4CEF98663231A7CC65B119313235114608100501B897D5980000005C24B88CAAAA80B75CF7559187AFBDCA5A70472559FFD292A5ECAC59E8321D1A2C5C09270793901DB18F28D24214561C7A8FF30DB12167E2C4972649E8EAA88EBE
ike 0:Du-CISCO_0:40: sent IKE msg (R-U-THERE): 84.73.193.80:4500->194.230.155.139:43387, len=92, id=4cef98663231a7cc/65b1193132351146:b897d598
ike 0: comes 194.230.155.139:43387->84.73.193.80:4500,ifindex=5....
ike 0: IKEv1 exchange=Informational id=4cef98663231a7cc/65b1193132351146:31e05253 len=92
ike 0: in 4CEF98663231A7CC65B11931323511460810050131E052530000005CF96F0863B404E9092273E6FC2E904D637F73508FDC330713653B02087F89712146CB0F94E00853932D56E421E3B9FEB99AF01833F575E881359551B8358A3B80
ike 0:Du-CISCO_0:40: dec 4CEF98663231A7CC65B11931323511460810050131E052530000005C0B000014F0107083395552FB7DAC6CCC011255D0000000200000000101108D294CEF98663231A7CC65B11931323511460000000400000000000000000000000C
ike 0:Du-CISCO_0:40: notify msg received: R-U-THERE-ACK
ike 0: comes 194.230.155.139:43387->84.73.193.80:4500,ifindex=5....
ike 0: IKEv1 exchange=Mode config id=4cef98663231a7cc/65b1193132351146:880d28c5 len=172
ike 0: in 4CEF98663231A7CC65B119313235114608100601880D28C5000000ACF7411B2B989F53DC9F811761EA2764DEED41ED4B814EA9E3BF39B6E3D411FD98E4DC5B87103F8E614FCCD323F58EB45364F4DF9C86F832BBF634A3A1E16E3DC3CAA0A948490AE32D5663D329402C34D8768FDC6A6390039D4FE52D301FD3B1168CD522A328AD93717C3297AB84AD78E407F0DBEEF33C0B9910F2AB0C8111CAADFF957396A1A3F9D455DF98B5E75B27B7
ike 0:Du-CISCO_0:40: dec 4CEF98663231A7CC65B119313235114608100601880D28C5000000AC0E000014D87F72AF36CA6D9715140C74161222900000006E0100A671000100000002000000030000000400000005000000070026436973636F2053797374656D732056504E20436C69656E7420382E333A6950686F6E65204F53700000007002000070030000700400007006000070070000700100007008000070090000700B0000000000000000000000000000000E
ike 0:Du-CISCO_0:40: mode-cfg type 1 request 0:''
ike 0:Du-CISCO_0:40: IPv4 address requested, using DHCP
ike 0:Du-CISCO_0:40: mode-cfg type 2 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg type 3 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg type 4 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg WINS ignored, no WINS servers configured
ike 0:Du-CISCO_0:40: mode-cfg type 5 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg type 7 request 38:'436973636F2053797374656D732056504E20436C69656E7420382E333A6950686F6E65204F53'
ike 0:Du-CISCO_0:40: mode-cfg received APPLICATION_VERSION Cisco Systems VPN Client 8.3:iPhone OSp
ike 0:Du-CISCO_0:40: mode-cfg type 28672 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28672 requested
ike 0:Du-CISCO_0:40: mode-cfg no banner configured, ignoring
ike 0:Du-CISCO_0:40: mode-cfg type 28674 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28674 requested
ike 0:Du-CISCO_0:40: mode-cfg no domain configured, ignoring
ike 0:Du-CISCO_0:40: mode-cfg type 28675 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28675 requested
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28675 not supported, ignoring
ike 0:Du-CISCO_0:40: mode-cfg type 28676 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28676 requested
ike 0:Du-CISCO_0:40: mode-cfg type 28678 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28678 requested
ike 0:Du-CISCO_0:40: mode-cfg type 28679 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28679 requested
ike 0:Du-CISCO_0:40: mode-cfg type 28673 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28673 requested
ike 0:Du-CISCO_0:40: mode-cfg type 28680 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28680 requested
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28680 not supported, ignoring
ike 0:Du-CISCO_0:40: mode-cfg type 28681 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28681 requested
ike 0:Du-CISCO_0:40: mode-cfg no backup-gateway configured, ignoring
ike 0:Du-CISCO_0:40: mode-cfg type 28683 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg attribute type 28683 not supported, ignoring
ike 0:Du-CISCO_0:40: waiting for DHCP response
ike 0:22 abandoned request IP '0.0.0.0'
ike 0:Du-CISCO_0:40: no IP assigned
ike 0: comes 194.230.155.139:43387->84.73.193.80:4500,ifindex=5....
ike 0: IKEv1 exchange=Mode config id=4cef98663231a7cc/65b1193132351146:880d28c5 len=172
ike 0: in 4CEF98663231A7CC65B119313235114608100601880D28C5000000ACF7411B2B989F53DC9F811761EA2764DEED41ED4B814EA9E3BF39B6E3D411FD98E4DC5B87103F8E614FCCD323F58EB45364F4DF9C86F832BBF634A3A1E16E3DC3CAA0A948490AE32D5663D329402C34D8768FDC6A6390039D4FE52D301FD3B1168CD522A328AD93717C3297AB84AD78E407F0DBEEF33C0B9910F2AB0C8111CAADFF957396A1A3F9D455DF98B5E75B27B7
ike 0:Du-CISCO_0:40: dec 4CEF98663231A7CC65B119313235114608100601880D28C5000000AC0E000014D87F72AF36CA6D9715140C74161222900000006E0100A671000100000002000000030000000400000005000000070026436973636F2053797374656D732056504E20436C69656E7420382E333A6950686F6E65204F53700000007002000070030000700400007006000070070000700100007008000070090000700B0000000000000000000000000000000E
ike 0:Du-CISCO_0:40: mode-cfg type 1 request 0:''
ike 0:Du-CISCO_0:40: IPv4 address requested, using DHCP
ike 0:Du-CISCO_0:40: mode-cfg type 2 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg type 3 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg type 4 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg WINS ignored, no WINS servers configured
ike 0:Du-CISCO_0:40: mode-cfg type 5 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg type 7 request 38:'436973636F2053797374656D732056504E20436C69656E7420382E333A6950686F6E65204F53'
ike 0:Du-CISCO_0:40: mode-cfg received APPLICATION_VERSION Cisco Systems VPN Client 8.3:iPhone OSp
ike 0:Du-CISCO_0:40: mode-cfg type 28672 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28672 requested
ike 0:Du-CISCO_0:40: mode-cfg no banner configured, ignoring
ike 0:Du-CISCO_0:40: mode-cfg type 28674 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28674 requested
ike 0:Du-CISCO_0:40: mode-cfg no domain configured, ignoring
ike 0:Du-CISCO_0:40: mode-cfg type 28675 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28675 requested
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28675 not supported, ignoring
ike 0:Du-CISCO_0:40: mode-cfg type 28676 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28676 requested
ike 0:Du-CISCO_0:40: mode-cfg type 28678 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28678 requested
ike 0:Du-CISCO_0:40: mode-cfg type 28679 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28679 requested
ike 0:Du-CISCO_0:40: mode-cfg type 28673 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28673 requested
ike 0:Du-CISCO_0:40: mode-cfg type 28680 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28680 requested
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28680 not supported, ignoring
ike 0:Du-CISCO_0:40: mode-cfg type 28681 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28681 requested
ike 0:Du-CISCO_0:40: mode-cfg no backup-gateway configured, ignoring
ike 0:Du-CISCO_0:40: mode-cfg type 28683 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg attribute type 28683 not supported, ignoring
ike 0:Du-CISCO_0:40: sending DHCP request
ike 0:Du-CISCO_0: link is idle 5 84.73.193.80->194.230.155.139:43387 dpd=1 seqno=5
ike 0:Du-CISCO_0:40: send IKEv1 DPD probe, seqno 5
ike 0:Du-CISCO_0:40: enc 4CEF98663231A7CC65B1193132351146081005018C201EC1000000500B0000145CAD957DBC0DE45F4B7D54E882CD6D00000000200000000101108D284CEF98663231A7CC65B119313235114600000005
ike 0:Du-CISCO_0:40: out 4CEF98663231A7CC65B1193132351146081005018C201EC10000005CED390C927D6C37A5D89600EC9E1A22856B976BB7DFDC7CDF58CAA621448C1E2AA1C390C5339C441F450F340EA02CD391FA9713ABBBD978C31057AF3A68FE6F26
ike 0:Du-CISCO_0:40: sent IKE msg (R-U-THERE): 84.73.193.80:4500->194.230.155.139:43387, len=92, id=4cef98663231a7cc/65b1193132351146:8c201ec1
ike 0: comes 194.230.155.139:43387->84.73.193.80:4500,ifindex=5....
ike 0: IKEv1 exchange=Informational id=4cef98663231a7cc/65b1193132351146:b64a71fd len=92
ike 0: in 4CEF98663231A7CC65B119313235114608100501B64A71FD0000005C50EC18F0D95122CACAA11799C2EE1C9FC3D6AB42474FE0BA4E53384AE1F0AA3F0F2CCBDEB56D54E93E1AA5D20BEBCE275DACC8CC213F27A3C32824C019C6B92A
ike 0:Du-CISCO_0:40: dec 4CEF98663231A7CC65B119313235114608100501B64A71FD0000005C0B0000142CCD59A4C395C290E8B89660B66F96F7000000200000000101108D294CEF98663231A7CC65B11931323511460000000500000000000000000000000C
ike 0:Du-CISCO_0:40: notify msg received: R-U-THERE-ACK
ike 0:23 re-transmit request IP '0.0.0.0'
ike 0: comes 194.230.155.139:43387->84.73.193.80:4500,ifindex=5....
ike 0: IKEv1 exchange=Mode config id=4cef98663231a7cc/65b1193132351146:880d28c5 len=172
ike 0: in 4CEF98663231A7CC65B119313235114608100601880D28C5000000ACF7411B2B989F53DC9F811761EA2764DEED41ED4B814EA9E3BF39B6E3D411FD98E4DC5B87103F8E614FCCD323F58EB45364F4DF9C86F832BBF634A3A1E16E3DC3CAA0A948490AE32D5663D329402C34D8768FDC6A6390039D4FE52D301FD3B1168CD522A328AD93717C3297AB84AD78E407F0DBEEF33C0B9910F2AB0C8111CAADFF957396A1A3F9D455DF98B5E75B27B7
ike 0:Du-CISCO_0:40: dec 4CEF98663231A7CC65B119313235114608100601880D28C5000000AC0E000014D87F72AF36CA6D9715140C74161222900000006E0100A671000100000002000000030000000400000005000000070026436973636F2053797374656D732056504E20436C69656E7420382E333A6950686F6E65204F53700000007002000070030000700400007006000070070000700100007008000070090000700B0000000000000000000000000000000E
ike 0:Du-CISCO_0:40: mode-cfg type 1 request 0:''
ike 0:Du-CISCO_0:40: IPv4 address requested, using DHCP
ike 0:Du-CISCO_0:40: mode-cfg type 2 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg type 3 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg type 4 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg WINS ignored, no WINS servers configured
ike 0:Du-CISCO_0:40: mode-cfg type 5 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg type 7 request 38:'436973636F2053797374656D732056504E20436C69656E7420382E333A6950686F6E65204F53'
ike 0:Du-CISCO_0:40: mode-cfg received APPLICATION_VERSION Cisco Systems VPN Client 8.3:iPhone OSp
ike 0:Du-CISCO_0:40: mode-cfg type 28672 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28672 requested
ike 0:Du-CISCO_0:40: mode-cfg no banner configured, ignoring
ike 0:Du-CISCO_0:40: mode-cfg type 28674 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28674 requested
ike 0:Du-CISCO_0:40: mode-cfg no domain configured, ignoring
ike 0:Du-CISCO_0:40: mode-cfg type 28675 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28675 requested
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28675 not supported, ignoring
ike 0:Du-CISCO_0:40: mode-cfg type 28676 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28676 requested
ike 0:Du-CISCO_0:40: mode-cfg type 28678 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28678 requested
ike 0:Du-CISCO_0:40: mode-cfg type 28679 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28679 requested
ike 0:Du-CISCO_0:40: mode-cfg type 28673 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28673 requested
ike 0:Du-CISCO_0:40: mode-cfg type 28680 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28680 requested
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28680 not supported, ignoring
ike 0:Du-CISCO_0:40: mode-cfg type 28681 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28681 requested
ike 0:Du-CISCO_0:40: mode-cfg no backup-gateway configured, ignoring
ike 0:Du-CISCO_0:40: mode-cfg type 28683 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg attribute type 28683 not supported, ignoring
ike 0:Du-CISCO_0:40: waiting for DHCP response
ike 0:23 re-transmit request IP '0.0.0.0'
ike shrank heap by 122880 bytes
ike 0:Du-CISCO_0: link is idle 5 84.73.193.80->194.230.155.139:43387 dpd=1 seqno=6
ike 0:Du-CISCO_0:40: send IKEv1 DPD probe, seqno 6
ike 0:Du-CISCO_0:40: enc 4CEF98663231A7CC65B1193132351146081005013401B3B4000000500B000014C7D0EAD240BD6020884A26906A63DC72000000200000000101108D284CEF98663231A7CC65B119313235114600000006
ike 0:Du-CISCO_0:40: out 4CEF98663231A7CC65B1193132351146081005013401B3B40000005C987C46199C37261B21EF2E9DC04486CF54D5F3D15E675CA6D65EE632F28DA309A826E74A4B16028B999FA9F6C31B8EA9A55E78F97B3106A79230D50E1EDCB37F
ike 0:Du-CISCO_0:40: sent IKE msg (R-U-THERE): 84.73.193.80:4500->194.230.155.139:43387, len=92, id=4cef98663231a7cc/65b1193132351146:3401b3b4
ike 0:23 re-transmit request IP '0.0.0.0'
ike 0: comes 194.230.155.139:43387->84.73.193.80:4500,ifindex=5....
ike 0: IKEv1 exchange=Informational id=4cef98663231a7cc/65b1193132351146:908241c1 len=92
ike 0: in 4CEF98663231A7CC65B119313235114608100501908241C10000005C4B8A6C6E85C8FFD7B2019062ED8EE74196D1B6ACBEC3518A20FB79CBA4C1D03BAD22EDE0FE6DF1656B2370F239B764EF553A4695D815C90F5B16EA19C1FEA299
ike 0:Du-CISCO_0:40: dec 4CEF98663231A7CC65B119313235114608100501908241C10000005C0B00001446F9A665A55B75B58EB36297F6592917000000200000000101108D294CEF98663231A7CC65B11931323511460000000600000000000000000000000C
ike 0:Du-CISCO_0:40: notify msg received: R-U-THERE-ACK
ike 0: comes 194.230.155.139:43387->84.73.193.80:4500,ifindex=5....
ike 0: IKEv1 exchange=Mode config id=4cef98663231a7cc/65b1193132351146:880d28c5 len=172
ike 0: in 4CEF98663231A7CC65B119313235114608100601880D28C5000000ACF7411B2B989F53DC9F811761EA2764DEED41ED4B814EA9E3BF39B6E3D411FD98E4DC5B87103F8E614FCCD323F58EB45364F4DF9C86F832BBF634A3A1E16E3DC3CAA0A948490AE32D5663D329402C34D8768FDC6A6390039D4FE52D301FD3B1168CD522A328AD93717C3297AB84AD78E407F0DBEEF33C0B9910F2AB0C8111CAADFF957396A1A3F9D455DF98B5E75B27B7
ike 0:Du-CISCO_0:40: dec 4CEF98663231A7CC65B119313235114608100601880D28C5000000AC0E000014D87F72AF36CA6D9715140C74161222900000006E0100A671000100000002000000030000000400000005000000070026436973636F2053797374656D732056504E20436C69656E7420382E333A6950686F6E65204F53700000007002000070030000700400007006000070070000700100007008000070090000700B0000000000000000000000000000000E
ike 0:Du-CISCO_0:40: mode-cfg type 1 request 0:''
ike 0:Du-CISCO_0:40: IPv4 address requested, using DHCP
ike 0:Du-CISCO_0:40: mode-cfg type 2 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg type 3 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg type 4 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg WINS ignored, no WINS servers configured
ike 0:Du-CISCO_0:40: mode-cfg type 5 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg type 7 request 38:'436973636F2053797374656D732056504E20436C69656E7420382E333A6950686F6E65204F53'
ike 0:Du-CISCO_0:40: mode-cfg received APPLICATION_VERSION Cisco Systems VPN Client 8.3:iPhone OSp
ike 0:Du-CISCO_0:40: mode-cfg type 28672 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28672 requested
ike 0:Du-CISCO_0:40: mode-cfg no banner configured, ignoring
ike 0:Du-CISCO_0:40: mode-cfg type 28674 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28674 requested
ike 0:Du-CISCO_0:40: mode-cfg no domain configured, ignoring
ike 0:Du-CISCO_0:40: mode-cfg type 28675 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28675 requested
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28675 not supported, ignoring
ike 0:Du-CISCO_0:40: mode-cfg type 28676 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28676 requested
ike 0:Du-CISCO_0:40: mode-cfg type 28678 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28678 requested
ike 0:Du-CISCO_0:40: mode-cfg type 28679 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28679 requested
ike 0:Du-CISCO_0:40: mode-cfg type 28673 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28673 requested
ike 0:Du-CISCO_0:40: mode-cfg type 28680 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28680 requested
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28680 not supported, ignoring
ike 0:Du-CISCO_0:40: mode-cfg type 28681 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg UNITY type 28681 requested
ike 0:Du-CISCO_0:40: mode-cfg no backup-gateway configured, ignoring
ike 0:Du-CISCO_0:40: mode-cfg type 28683 request 0:''
ike 0:Du-CISCO_0:40: mode-cfg attribute type 28683 not supported, ignoring
ike 0:Du-CISCO_0:40: waiting for DHCP response
ike 0: comes 194.230.155.139:43387->84.73.193.80:4500,ifindex=5....
ike 0: IKEv1 exchange=Informational id=4cef98663231a7cc/65b1193132351146:f634370b len=92
ike 0: in 4CEF98663231A7CC65B119313235114608100501F634370B0000005C90E692E8A1150E0E2F36271FB4727B1E4D1D239526E8B1C0826CCC7693DFB87EB969D295DD364EED6A10053BCE064A201AB2ADBBF800BF1FE08E672EF369AAC1
ike 0:Du-CISCO_0:40: dec 4CEF98663231A7CC65B119313235114608100501F634370B0000005C0C000014A0F67FE295FE402381A6489A1A5E49700000001C00000001011000014CEF98663231A7CC65B119313235114600000000000000000000000000000010
ike 0:Du-CISCO_0:40: recv ISAKMP SA delete 4cef98663231a7cc/65b1193132351146
ike 0:Du-CISCO_0: deleting
ike 0:Du-CISCO_0: flushing
ike 0:Du-CISCO_0: sending SNMP tunnel DOWN trap
ike 0:Du-CISCO_0: flushed
ike 0:Du-CISCO_0: delete dynamic
ike 0:Du-CISCO_0: reset NAT-T
ike 0:Du-CISCO_0: deleted
diagnose debug disable
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hmm...
Try disabling mode-cfg in Phase 1, and then go back to the Phase 2 settings and enable DHCP:
config vpn ipsec phase1-interface
edit "Du-CISCO"
set mode-cfg disable
end
config vpn ipsec phase2-interface
edit "Du-CISCO"
set dhcp-ipsec enable
end
Regards, Chris McMullan Fortinet Ottawa
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
No success.
FGT70D # config vpn ipsec phase1-interface
FGT70D (phase1-interface) # edit Du-CISCO
FGT70D (Du-CISCO) # set mode-cfg disable
FGT70D (Du-CISCO) # end
FGT70D # config vpn ipsec phase2-interface
FGT70D (phase2-interface) # edit Du-CISCO
FGT70D (Du-CISCO) # set dhcp-ipsec enable
FGT70D (Du-CISCO) # end
FGT70D #
ike 0:Du-CISCO_0:42: sending XAUTH request
ike 0:Du-CISCO_0:42: enc D4DF6FF62FDFF6FB06686194B82DCE360810060136987C4B000000440E00001408BACB0E217C9C6F2B8EA29024619D910000001401001C6AC088000040890000408A0000
ike 0:Du-CISCO_0:42: out D4DF6FF62FDFF6FB06686194B82DCE360810060136987C4B0000004CA044C740D1E91D104EE369DA3A8A00B1E74D3042FCD5EAA8EE067A89183A7F3567E008A07992BD8AF43B6ACD463773AD
ike 0:Du-CISCO_0:42: sent IKE msg (cfg_send): 84.73.193.80:4500->194.230.155.139:43685, len=76, id=d4df6ff62fdff6fb/06686194b82dce36:36987c4b
ike shrank heap by 122880 bytes
ike 0:Du-CISCO_0:42: out D4DF6FF62FDFF6FB06686194B82DCE360810060136987C4B0000004CA044C740D1E91D104EE369DA3A8A00B1E74D3042FCD5EAA8EE067A89183A7F3567E008A07992BD8AF43B6ACD463773AD
ike 0:Du-CISCO_0:42: sent IKE msg (CFG_RETRANS): 84.73.193.80:4500->194.230.155.139:43685, len=76, id=d4df6ff62fdff6fb/06686194b82dce36:36987c4b
ike 0:Du-CISCO_0: link is idle 5 84.73.193.80->194.230.155.139:43685 dpd=1 seqno=2
ike 0:Du-CISCO_0:42: send IKEv1 DPD probe, seqno 2
ike 0:Du-CISCO_0:42: enc D4DF6FF62FDFF6FB06686194B82DCE36081005015B61046C000000500B0000144FC6E4E3E276C40D3E3C9495224DDB1E000000200000000101108D28D4DF6FF62FDFF6FB06686194B82DCE3600000002
ike 0:Du-CISCO_0:42: out D4DF6FF62FDFF6FB06686194B82DCE36081005015B61046C0000005C65739947DC0AB10C3692BB23CB9061DFCA3DE7CF903C64EB4F09ED5510FBAB04EFF4732F041E11312F0EAF773F337E9F32966896B68A529DB53F4CF503CB191F
ike 0:Du-CISCO_0:42: sent IKE msg (R-U-THERE): 84.73.193.80:4500->194.230.155.139:43685, len=92, id=d4df6ff62fdff6fb/06686194b82dce36:5b61046c
ike 0: comes 194.230.155.139:43685->84.73.193.80:4500,ifindex=5....
ike 0: IKEv1 exchange=Informational id=d4df6ff62fdff6fb/06686194b82dce36:6fb2ed68 len=92
ike 0: in D4DF6FF62FDFF6FB06686194B82DCE36081005016FB2ED680000005C884F23D4024195FBB576DF641B34BEC8F597EADA3071A5EE19A8010D2FE1DEFB3FDC386950BDBA0CEC334E7BBBA87628F04D4F88B6BC4596DA0A5DAB6F0D66DE
ike 0:Du-CISCO_0:42: dec D4DF6FF62FDFF6FB06686194B82DCE36081005016FB2ED680000005C0B000014193D2B15C5761B4AAA47D9F216891FA1000000200000000101108D29D4DF6FF62FDFF6FB06686194B82DCE360000000200000000000000000000000C
ike 0:Du-CISCO_0:42: notify msg received: R-U-THERE-ACK
ike 0:Du-CISCO_0:42: out D4DF6FF62FDFF6FB06686194B82DCE360810060136987C4B0000004CA044C740D1E91D104EE369DA3A8A00B1E74D3042FCD5EAA8EE067A89183A7F3567E008A07992BD8AF43B6ACD463773AD
ike 0:Du-CISCO_0:42: sent IKE msg (CFG_RETRANS): 84.73.193.80:4500->194.230.155.139:43685, len=76, id=d4df6ff62fdff6fb/06686194b82dce36:36987c4b
ike 0:Du-CISCO_0: link is idle 5 84.73.193.80->194.230.155.139:43685 dpd=1 seqno=3
ike 0:Du-CISCO_0:42: send IKEv1 DPD probe, seqno 3
ike 0:Du-CISCO_0:42: enc D4DF6FF62FDFF6FB06686194B82DCE360810050103812A41000000500B0000148E76C290294D5F220E9ED166DC774C17000000200000000101108D28D4DF6FF62FDFF6FB06686194B82DCE3600000003
ike 0:Du-CISCO_0:42: out D4DF6FF62FDFF6FB06686194B82DCE360810050103812A410000005C1B32135CE44C683F1123A008F93706F41B358604EFFF2B28145AC18F70CEA50D8D135764200A6D368242E2C4C90826EE3432BC15C4144C15FCCD94506FEBB4CB
ike 0:Du-CISCO_0:42: sent IKE msg (R-U-THERE): 84.73.193.80:4500->194.230.155.139:43685, len=92, id=d4df6ff62fdff6fb/06686194b82dce36:03812a41
ike 0: comes 194.230.155.139:43685->84.73.193.80:4500,ifindex=5....
ike 0: IKEv1 exchange=Informational id=d4df6ff62fdff6fb/06686194b82dce36:dffe8d03 len=92
ike 0: in D4DF6FF62FDFF6FB06686194B82DCE3608100501DFFE8D030000005C346B82359EBAA2E6317AC284B1F44AEF2DB291027986F459AD49426912A05D9887AF40ECD3662AD74822C5BA43FE7C478E8D5EA020F34D166A7F3B32FE3F82FB
ike 0:Du-CISCO_0:42: dec D4DF6FF62FDFF6FB06686194B82DCE3608100501DFFE8D030000005C0B0000147113717AF6CC0B87A5DD9D80E2D1F0DF000000200000000101108D29D4DF6FF62FDFF6FB06686194B82DCE360000000300000000000000000000000C
ike 0:Du-CISCO_0:42: notify msg received: R-U-THERE-ACK
ike 0: comes 194.230.155.139:43685->84.73.193.80:4500,ifindex=5....
ike 0: IKEv1 exchange=Mode config id=d4df6ff62fdff6fb/06686194b82dce36:36987c4b len=92
ike 0: in D4DF6FF62FDFF6FB06686194B82DCE360810060136987C4B0000005C79FC40F0E2DCDC8E37F7F6FEDE78C5B0479CC85DC201192B34E21B8210F5901EAB622BEC010461F6AFC2546EC22C319AE02CDB7D715B09104AC3B40ED169024C
ike 0:Du-CISCO_0:42: dec D4DF6FF62FDFF6FB06686194B82DCE360810060136987C4B0000005C0E0000148CA4EE25EB3EB4E1273E1C61570A845E0000002002001C0040890008636872696869747A408A00085369723168656C6C00000000000000000000000C
ike 0:Du-CISCO_0:42: received XAUTH_USER_NAME 'chrihitz' length 8
ike 0:Du-CISCO_0:42: received XAUTH_USER_PASSWORD length 8
ike 0:Du-CISCO_0: XAUTH user "chrihitz"
ike 0:Du-CISCO: auth group VPN-Users
ike 0:Du-CISCO_0: XAUTH succeeded for user "chrihitz" group "VPN-Users"
ike 0:Du-CISCO_0:42: enc D4DF6FF62FDFF6FB06686194B82DCE36081006010ED826F80000003C0E000014C4F43B6A2E66F5C3A7AC9EE357057BF40000000C03001C00C08F0001
ike 0:Du-CISCO_0:42: out D4DF6FF62FDFF6FB06686194B82DCE36081006010ED826F80000004C00D819A7739112C4B41AF9AA187126231373E17DAB1EF502AB468D76DD9F259702759BB71289C1611E4340AC85839E79
ike 0:Du-CISCO_0:42: sent IKE msg (cfg_send): 84.73.193.80:4500->194.230.155.139:43685, len=76, id=d4df6ff62fdff6fb/06686194b82dce36:0ed826f8
ike 0: comes 194.230.155.139:43685->84.73.193.80:4500,ifindex=5....
ike 0: IKEv1 exchange=Mode config id=d4df6ff62fdff6fb/06686194b82dce36:0ed826f8 len=76
ike 0: in D4DF6FF62FDFF6FB06686194B82DCE36081006010ED826F80000004C1F9F7A558E64853AA9A4E64987C43B70C6A4075392294E2CA78EDB2C4E4A0233EB1078E63C5EE0F85D671B4A80176BE4
ike 0:Du-CISCO_0:42: dec D4DF6FF62FDFF6FB06686194B82DCE36081006010ED826F80000004C0E0000147A47C0317E995B2A088B647395876CF70000000C04001C00C08F000000000000000000000000000000000010
ike 0: comes 194.230.155.139:43685->84.73.193.80:4500,ifindex=5....
ike 0: IKEv1 exchange=Mode config id=d4df6ff62fdff6fb/06686194b82dce36:03cab72d len=172
ike 0: in D4DF6FF62FDFF6FB06686194B82DCE360810060103CAB72D000000ACF7E428AED5F30D6A4FD19A36724FFC1F52917C081F18D285C7C1B50C419F04195E70845085851B01780E6DEB4F4E900B1D26DC4A241E15EFF15B25DF535146C299E9022967ACCDBA6B837DD68EB4D552B08C5576B98A672B4DF5BBF6288DAD61E1D24C9B2746982D4249249193A64414CB14D4AAF93724B71B81B422FBEE0AB23821FACAD4E1F82BBCFCB6B8B506DB66
ike 0:Du-CISCO_0:42: dec D4DF6FF62FDFF6FB06686194B82DCE360810060103CAB72D000000AC0E000014466B0E65AD678A30925837148FDB5D8F0000006E01008686000100000002000000030000000400000005000000070026436973636F2053797374656D732056504E20436C69656E7420382E333A6950686F6E65204F53700000007002000070030000700400007006000070070000700100007008000070090000700B0000000000000000000000000000000E
ike 0:Du-CISCO_0:42: mode-cfg type 1 request 0:''
ike 0:Du-CISCO_0:42: mode-cfg not enabled, ignoring Configuration Method Request
ike 0:Du-CISCO_0: link is idle 5 84.73.193.80->194.230.155.139:43685 dpd=1 seqno=4
ike 0:Du-CISCO_0:42: send IKEv1 DPD probe, seqno 4
ike 0:Du-CISCO_0:42: enc D4DF6FF62FDFF6FB06686194B82DCE36081005016F8215F7000000500B0000142AFE2C3EBBE854E4BB103527FB8D5192000000200000000101108D28D4DF6FF62FDFF6FB06686194B82DCE3600000004
ike 0:Du-CISCO_0:42: out D4DF6FF62FDFF6FB06686194B82DCE36081005016F8215F70000005CA96CAD6B06B33A165AB8AA9CD12C21C2A29E9B9A0E0DDB7AE320695E9F714166168DE4F5D60829B6539F6816001E0BBE299CCC0071626A97B4424AC7121ED869
ike 0:Du-CISCO_0:42: sent IKE msg (R-U-THERE): 84.73.193.80:4500->194.230.155.139:43685, len=92, id=d4df6ff62fdff6fb/06686194b82dce36:6f8215f7
ike 0: comes 194.230.155.139:43685->84.73.193.80:4500,ifindex=5....
ike 0: IKEv1 exchange=Mode config id=d4df6ff62fdff6fb/06686194b82dce36:03cab72d len=172
ike 0: in D4DF6FF62FDFF6FB06686194B82DCE360810060103CAB72D000000ACF7E428AED5F30D6A4FD19A36724FFC1F52917C081F18D285C7C1B50C419F04195E70845085851B01780E6DEB4F4E900B1D26DC4A241E15EFF15B25DF535146C299E9022967ACCDBA6B837DD68EB4D552B08C5576B98A672B4DF5BBF6288DAD61E1D24C9B2746982D4249249193A64414CB14D4AAF93724B71B81B422FBEE0AB23821FACAD4E1F82BBCFCB6B8B506DB66
ike 0:Du-CISCO_0:42: dec D4DF6FF62FDFF6FB06686194B82DCE360810060103CAB72D000000AC0E000014466B0E65AD678A30925837148FDB5D8F0000006E01008686000100000002000000030000000400000005000000070026436973636F2053797374656D732056504E20436C69656E7420382E333A6950686F6E65204F53700000007002000070030000700400007006000070070000700100007008000070090000700B0000000000000000000000000000000E
ike 0:Du-CISCO_0:42: mode-cfg type 1 request 0:''
ike 0:Du-CISCO_0:42: mode-cfg not enabled, ignoring Configuration Method Request
ike 0: comes 194.230.155.139:43685->84.73.193.80:4500,ifindex=5....
ike 0: IKEv1 exchange=Informational id=d4df6ff62fdff6fb/06686194b82dce36:1854bf0e len=92
ike 0: in D4DF6FF62FDFF6FB06686194B82DCE36081005011854BF0E0000005C46DCF2819CD17EC7B6A1583E2DE929A3AA2B1267E5D5150A8A2D8546077D353F87DE554A68B99545679A5951A7ECC2DB04DAAAEF2609D31432A1237A4D45FB17
ike 0:Du-CISCO_0:42: dec D4DF6FF62FDFF6FB06686194B82DCE36081005011854BF0E0000005C0B000014EC4BD2A434CEE39E1A2FCB990C07F6E4000000200000000101108D29D4DF6FF62FDFF6FB06686194B82DCE360000000400000000000000000000000C
ike 0:Du-CISCO_0:42: notify msg received: R-U-THERE-ACK
ike 0: comes 194.230.155.139:43685->84.73.193.80:4500,ifindex=5....
ike 0: IKEv1 exchange=Mode config id=d4df6ff62fdff6fb/06686194b82dce36:03cab72d len=172
ike 0: in D4DF6FF62FDFF6FB06686194B82DCE360810060103CAB72D000000ACF7E428AED5F30D6A4FD19A36724FFC1F52917C081F18D285C7C1B50C419F04195E70845085851B01780E6DEB4F4E900B1D26DC4A241E15EFF15B25DF535146C299E9022967ACCDBA6B837DD68EB4D552B08C5576B98A672B4DF5BBF6288DAD61E1D24C9B2746982D4249249193A64414CB14D4AAF93724B71B81B422FBEE0AB23821FACAD4E1F82BBCFCB6B8B506DB66
ike 0:Du-CISCO_0:42: dec D4DF6FF62FDFF6FB06686194B82DCE360810060103CAB72D000000AC0E000014466B0E65AD678A30925837148FDB5D8F0000006E01008686000100000002000000030000000400000005000000070026436973636F2053797374656D732056504E20436C69656E7420382E333A6950686F6E65204F53700000007002000070030000700400007006000070070000700100007008000070090000700B0000000000000000000000000000000E
ike 0:Du-CISCO_0:42: mode-cfg type 1 request 0:''
ike 0:Du-CISCO_0:42: mode-cfg not enabled, ignoring Configuration Method Request
ike 0:Du-CISCO_0: link is idle 5 84.73.193.80->194.230.155.139:43685 dpd=1 seqno=5
ike 0:Du-CISCO_0:42: send IKEv1 DPD probe, seqno 5
ike 0:Du-CISCO_0:42: enc D4DF6FF62FDFF6FB06686194B82DCE3608100501391D6F52000000500B000014F3EF633847799CC325446C9726C47AC5000000200000000101108D28D4DF6FF62FDFF6FB06686194B82DCE3600000005
ike 0:Du-CISCO_0:42: out D4DF6FF62FDFF6FB06686194B82DCE3608100501391D6F520000005CE25467857DD847164CF1DF172564C437E6EF2916E0BDB199E1958C72734ACE23ED0D5EA9515CE8D9C4AF5C224C85CBAAA59D1C6A75C97E687FCCD4A43EBC7A40
ike 0:Du-CISCO_0:42: sent IKE msg (R-U-THERE): 84.73.193.80:4500->194.230.155.139:43685, len=92, id=d4df6ff62fdff6fb/06686194b82dce36:391d6f52
ike 0: comes 194.230.155.139:43685->84.73.193.80:4500,ifindex=5....
ike 0: IKEv1 exchange=Informational id=d4df6ff62fdff6fb/06686194b82dce36:0a6fc637 len=92
ike 0: in D4DF6FF62FDFF6FB06686194B82DCE36081005010A6FC6370000005CDBA0050F2261D7366C73BAAE4503BA0715150BCAADAAB78B52378CDFD5B7D5196A8D39EF04B13A7F523BC3B94A4317B6F992CAD37F05C617771F26239B2DA849
ike 0:Du-CISCO_0:42: dec D4DF6FF62FDFF6FB06686194B82DCE36081005010A6FC6370000005C0B000014341C1D920CB7E656C91853946ECCB9A6000000200000000101108D29D4DF6FF62FDFF6FB06686194B82DCE360000000500000000000000000000000C
ike 0:Du-CISCO_0:42: notify msg received: R-U-THERE-ACK
ike 0: comes 194.230.155.139:43685->84.73.193.80:4500,ifindex=5....
ike 0: IKEv1 exchange=Mode config id=d4df6ff62fdff6fb/06686194b82dce36:03cab72d len=172
ike 0: in D4DF6FF62FDFF6FB06686194B82DCE360810060103CAB72D000000ACF7E428AED5F30D6A4FD19A36724FFC1F52917C081F18D285C7C1B50C419F04195E70845085851B01780E6DEB4F4E900B1D26DC4A241E15EFF15B25DF535146C299E9022967ACCDBA6B837DD68EB4D552B08C5576B98A672B4DF5BBF6288DAD61E1D24C9B2746982D4249249193A64414CB14D4AAF93724B71B81B422FBEE0AB23821FACAD4E1F82BBCFCB6B8B506DB66
ike 0:Du-CISCO_0:42: dec D4DF6FF62FDFF6FB06686194B82DCE360810060103CAB72D000000AC0E000014466B0E65AD678A30925837148FDB5D8F0000006E01008686000100000002000000030000000400000005000000070026436973636F2053797374656D732056504E20436C69656E7420382E333A6950686F6E65204F53700000007002000070030000700400007006000070070000700100007008000070090000700B0000000000000000000000000000000E
ike 0:Du-CISCO_0:42: mode-cfg type 1 request 0:''
ike 0:Du-CISCO_0:42: mode-cfg not enabled, ignoring Configuration Method Request
ike 0: comes 194.230.155.139:43685->84.73.193.80:4500,ifindex=5....
ike 0: IKEv1 exchange=Mode config id=d4df6ff62fdff6fb/06686194b82dce36:03cab72d len=172
ike 0: in D4DF6FF62FDFF6FB06686194B82DCE360810060103CAB72D000000ACF7E428AED5F30D6A4FD19A36724FFC1F52917C081F18D285C7C1B50C419F04195E70845085851B01780E6DEB4F4E900B1D26DC4A241E15EFF15B25DF535146C299E9022967ACCDBA6B837DD68EB4D552B08C5576B98A672B4DF5BBF6288DAD61E1D24C9B2746982D4249249193A64414CB14D4AAF93724B71B81B422FBEE0AB23821FACAD4E1F82BBCFCB6B8B506DB66
ike 0:Du-CISCO_0:42: dec D4DF6FF62FDFF6FB06686194B82DCE360810060103CAB72D000000AC0E000014466B0E65AD678A30925837148FDB5D8F0000006E01008686000100000002000000030000000400000005000000070026436973636F2053797374656D732056504E20436C69656E7420382E333A6950686F6E65204F53700000007002000070030000700400007006000070070000700100007008000070090000700B0000000000000000000000000000000E
ike 0:Du-CISCO_0:42: mode-cfg type 1 request 0:''
ike 0:Du-CISCO_0:42: mode-cfg not enabled, ignoring Configuration Method Request
ike 0:Du-CISCO_0: link is idle 5 84.73.193.80->194.230.155.139:43685 dpd=1 seqno=6
ike 0:Du-CISCO_0:42: send IKEv1 DPD probe, seqno 6
ike 0:Du-CISCO_0:42: enc D4DF6FF62FDFF6FB06686194B82DCE3608100501A042ADEF000000500B00001413C603D1519BE3B69F3D03181FB8BECF000000200000000101108D28D4DF6FF62FDFF6FB06686194B82DCE3600000006
ike 0:Du-CISCO_0:42: out D4DF6FF62FDFF6FB06686194B82DCE3608100501A042ADEF0000005C513A87B778C66881DE5FE6E0DB409BD06E0D2FF12C8C0884413670D406CDC26BB36CABA29B3E759A3CBD348752660D639F5954771D6DB64259E0977CD6F020B8
ike 0:Du-CISCO_0:42: sent IKE msg (R-U-THERE): 84.73.193.80:4500->194.230.155.139:43685, len=92, id=d4df6ff62fdff6fb/06686194b82dce36:a042adef
ike 0: comes 194.230.155.139:43685->84.73.193.80:4500,ifindex=5....
ike 0: IKEv1 exchange=Informational id=d4df6ff62fdff6fb/06686194b82dce36:518c3bd7 len=92
ike 0: in D4DF6FF62FDFF6FB06686194B82DCE3608100501518C3BD70000005C5B5E83D59BB93B9F0C043B8C3611221CEB90820614D50812B0D992EA457C74B860278695EC3D9A79DF96B353200789572D33FACCBE1D27AC39E07B2B4304526F
ike 0:Du-CISCO_0:42: dec D4DF6FF62FDFF6FB06686194B82DCE3608100501518C3BD70000005C0B000014D23E0DA895A58907F1F67974A5007CF6000000200000000101108D29D4DF6FF62FDFF6FB06686194B82DCE360000000600000000000000000000000C
ike 0:Du-CISCO_0:42: notify msg received: R-U-THERE-ACK
ike 0: comes 194.230.155.139:43685->84.73.193.80:4500,ifindex=5....
ike 0: IKEv1 exchange=Mode config id=d4df6ff62fdff6fb/06686194b82dce36:03cab72d len=172
ike 0: in D4DF6FF62FDFF6FB06686194B82DCE360810060103CAB72D000000ACF7E428AED5F30D6A4FD19A36724FFC1F52917C081F18D285C7C1B50C419F04195E70845085851B01780E6DEB4F4E900B1D26DC4A241E15EFF15B25DF535146C299E9022967ACCDBA6B837DD68EB4D552B08C5576B98A672B4DF5BBF6288DAD61E1D24C9B2746982D4249249193A64414CB14D4AAF93724B71B81B422FBEE0AB23821FACAD4E1F82BBCFCB6B8B506DB66
ike 0:Du-CISCO_0:42: dec D4DF6FF62FDFF6FB06686194B82DCE360810060103CAB72D000000AC0E000014466B0E65AD678A30925837148FDB5D8F0000006E01008686000100000002000000030000000400000005000000070026436973636F2053797374656D732056504E20436C69656E7420382E333A6950686F6E65204F53700000007002000070030000700400007006000070070000700100007008000070090000700B0000000000000000000000000000000E
ike 0:Du-CISCO_0:42: mode-cfg type 1 request 0:''
ike 0:Du-CISCO_0:42: mode-cfg not enabled, ignoring Configuration Method Request
ike 0:Du-CISCO_0: link is idle 5 84.73.193.80->194.230.155.139:43685 dpd=1 seqno=7
ike 0:Du-CISCO_0:42: send IKEv1 DPD probe, seqno 7
ike 0:Du-CISCO_0:42: enc D4DF6FF62FDFF6FB06686194B82DCE360810050196C09702000000500B000014BD356FC3577DDE67A3862090FE31656B000000200000000101108D28D4DF6FF62FDFF6FB06686194B82DCE3600000007
ike 0:Du-CISCO_0:42: out D4DF6FF62FDFF6FB06686194B82DCE360810050196C097020000005C626985C16BA0DC17FA5C09DFD72D0F1C5C95012C5B1B535EC75D03DB8614AE6724D075E70E52F490C592B817521C890E91CA588C8813D6EC98447C89E0269620
ike 0:Du-CISCO_0:42: sent IKE msg (R-U-THERE): 84.73.193.80:4500->194.230.155.139:43685, len=92, id=d4df6ff62fdff6fb/06686194b82dce36:96c09702
ike 0: comes 194.230.155.139:43685->84.73.193.80:4500,ifindex=5....
ike 0: IKEv1 exchange=Informational id=d4df6ff62fdff6fb/06686194b82dce36:b773f83f len=92
ike 0: in D4DF6FF62FDFF6FB06686194B82DCE3608100501B773F83F0000005CDBF692CB0DC649A3DEBF6048080B146A7928AF0D214D2F4DD113B6F7D5259086181FF295BE75D0D15A5BB7234FD74AF454715B89586A2A838ECCE6E89451B7DC
ike 0:Du-CISCO_0:42: dec D4DF6FF62FDFF6FB06686194B82DCE3608100501B773F83F0000005C0B0000147826A81B58FB1CB631E3A2AD90832154000000200000000101108D29D4DF6FF62FDFF6FB06686194B82DCE360000000700000000000000000000000C
ike 0:Du-CISCO_0:42: notify msg received: R-U-THERE-ACK
ike 0: comes 194.230.155.139:43685->84.73.193.80:4500,ifindex=5....
ike 0: IKEv1 exchange=Mode config id=d4df6ff62fdff6fb/06686194b82dce36:03cab72d len=172
ike 0: in D4DF6FF62FDFF6FB06686194B82DCE360810060103CAB72D000000ACF7E428AED5F30D6A4FD19A36724FFC1F52917C081F18D285C7C1B50C419F04195E70845085851B01780E6DEB4F4E900B1D26DC4A241E15EFF15B25DF535146C299E9022967ACCDBA6B837DD68EB4D552B08C5576B98A672B4DF5BBF6288DAD61E1D24C9B2746982D4249249193A64414CB14D4AAF93724B71B81B422FBEE0AB23821FACAD4E1F82BBCFCB6B8B506DB66
ike 0:Du-CISCO_0:42: dec D4DF6FF62FDFF6FB06686194B82DCE360810060103CAB72D000000AC0E000014466B0E65AD678A30925837148FDB5D8F0000006E01008686000100000002000000030000000400000005000000070026436973636F2053797374656D732056504E20436C69656E7420382E333A6950686F6E65204F53700000007002000070030000700400007006000070070000700100007008000070090000700B0000000000000000000000000000000E
ike 0:Du-CISCO_0:42: mode-cfg type 1 request 0:''
ike 0:Du-CISCO_0:42: mode-cfg not enabled, ignoring Configuration Method Request
ike 0: comes 194.230.155.139:43685->84.73.193.80:4500,ifindex=5....
ike 0: IKEv1 exchange=Mode config id=d4df6ff62fdff6fb/06686194b82dce36:03cab72d len=172
ike 0: in D4DF6FF62FDFF6FB06686194B82DCE360810060103CAB72D000000ACF7E428AED5F30D6A4FD19A36724FFC1F52917C081F18D285C7C1B50C419F04195E70845085851B01780E6DEB4F4E900B1D26DC4A241E15EFF15B25DF535146C299E9022967ACCDBA6B837DD68EB4D552B08C5576B98A672B4DF5BBF6288DAD61E1D24C9B2746982D4249249193A64414CB14D4AAF93724B71B81B422FBEE0AB23821FACAD4E1F82BBCFCB6B8B506DB66
ike 0:Du-CISCO_0:42: dec D4DF6FF62FDFF6FB06686194B82DCE360810060103CAB72D000000AC0E000014466B0E65AD678A30925837148FDB5D8F0000006E01008686000100000002000000030000000400000005000000070026436973636F2053797374656D732056504E20436C69656E7420382E333A6950686F6E65204F53700000007002000070030000700400007006000070070000700100007008000070090000700B0000000000000000000000000000000E
ike 0:Du-CISCO_0:42: mode-cfg type 1 request 0:''
ike 0:Du-CISCO_0:42: mode-cfg not enabled, ignoring Configuration Method Request
ike 0:Du-CISCO_0: link is idle 5 84.73.193.80->194.230.155.139:43685 dpd=1 seqno=8
ike 0:Du-CISCO_0:42: send IKEv1 DPD probe, seqno 8
ike 0:Du-CISCO_0:42: enc D4DF6FF62FDFF6FB06686194B82DCE3608100501AE3F956A000000500B000014B8246FD988E97F51B20D0FA8A377FB34000000200000000101108D28D4DF6FF62FDFF6FB06686194B82DCE3600000008
ike 0:Du-CISCO_0:42: out D4DF6FF62FDFF6FB06686194B82DCE3608100501AE3F956A0000005C6A8884B37013CEEBE6A6A93F946FB8B90239FECBC1033BB40B6CDCB0E94872A367B1DE26A8FB5AA2B0467E41EC672F8F0EAAFE5FCCBF1BB4C572AFDD4F3E7C1A
ike 0:Du-CISCO_0:42: sent IKE msg (R-U-THERE): 84.73.193.80:4500->194.230.155.139:43685, len=92, id=d4df6ff62fdff6fb/06686194b82dce36:ae3f956a
ike 0: comes 194.230.155.139:43685->84.73.193.80:4500,ifindex=5....
ike 0: IKEv1 exchange=Informational id=d4df6ff62fdff6fb/06686194b82dce36:23008d73 len=92
ike 0: in D4DF6FF62FDFF6FB06686194B82DCE360810050123008D730000005C2748741AA0CF9FBEDA102298CD90A1643301E76EC8AD94EC8C177444B12459D6BA56F8D5BDF02D71B39693F970141AF454FE2ED1A81E509BE80655BAE03C7510
ike 0:Du-CISCO_0:42: dec D4DF6FF62FDFF6FB06686194B82DCE360810050123008D730000005C0B00001413E398F4275764EE7A83ADB28257B1B8000000200000000101108D29D4DF6FF62FDFF6FB06686194B82DCE360000000800000000000000000000000C
ike 0:Du-CISCO_0:42: notify msg received: R-U-THERE-ACK
ike 0: comes 194.230.155.139:43685->84.73.193.80:4500,ifindex=5....
ike 0: IKEv1 exchange=Mode config id=d4df6ff62fdff6fb/06686194b82dce36:03cab72d len=172
ike 0: in D4DF6FF62FDFF6FB06686194B82DCE360810060103CAB72D000000ACF7E428AED5F30D6A4FD19A36724FFC1F52917C081F18D285C7C1B50C419F04195E70845085851B01780E6DEB4F4E900B1D26DC4A241E15EFF15B25DF535146C299E9022967ACCDBA6B837DD68EB4D552B08C5576B98A672B4DF5BBF6288DAD61E1D24C9B2746982D4249249193A64414CB14D4AAF93724B71B81B422FBEE0AB23821FACAD4E1F82BBCFCB6B8B506DB66
ike 0:Du-CISCO_0:42: dec D4DF6FF62FDFF6FB06686194B82DCE360810060103CAB72D000000AC0E000014466B0E65AD678A30925837148FDB5D8F0000006E01008686000100000002000000030000000400000005000000070026436973636F2053797374656D732056504E20436C69656E7420382E333A6950686F6E65204F53700000007002000070030000700400007006000070070000700100007008000070090000700B0000000000000000000000000000000E
ike 0:Du-CISCO_0:42: mode-cfg type 1 request 0:''
ike 0:Du-CISCO_0:42: mode-cfg not enabled, ignoring Configuration Method Request
ike 0: comes 194.230.155.139:43685->84.73.193.80:4500,ifindex=5....
ike 0: IKEv1 exchange=Mode config id=d4df6ff62fdff6fb/06686194b82dce36:03cab72d len=172
ike 0: in D4DF6FF62FDFF6FB06686194B82DCE360810060103CAB72D000000ACF7E428AED5F30D6A4FD19A36724FFC1F52917C081F18D285C7C1B50C419F04195E70845085851B01780E6DEB4F4E900B1D26DC4A241E15EFF15B25DF535146C299E9022967ACCDBA6B837DD68EB4D552B08C5576B98A672B4DF5BBF6288DAD61E1D24C9B2746982D4249249193A64414CB14D4AAF93724B71B81B422FBEE0AB23821FACAD4E1F82BBCFCB6B8B506DB66
ike 0:Du-CISCO_0:42: dec D4DF6FF62FDFF6FB06686194B82DCE360810060103CAB72D000000AC0E000014466B0E65AD678A30925837148FDB5D8F0000006E01008686000100000002000000030000000400000005000000070026436973636F2053797374656D732056504E20436C69656E7420382E333A6950686F6E65204F53700000007002000070030000700400007006000070070000700100007008000070090000700B0000000000000000000000000000000E
ike 0:Du-CISCO_0:42: mode-cfg type 1 request 0:''
ike 0:Du-CISCO_0:42: mode-cfg not enabled, ignoring Configuration Method Request
ike 0:Du-CISCO_0: link is idle 5 84.73.193.80->194.230.155.139:43685 dpd=1 seqno=9
ike 0:Du-CISCO_0:42: send IKEv1 DPD probe, seqno 9
ike 0:Du-CISCO_0:42: enc D4DF6FF62FDFF6FB06686194B82DCE3608100501CFA6D926000000500B0000145467F2946ED79D95335A210D731E657E000000200000000101108D28D4DF6FF62FDFF6FB06686194B82DCE3600000009
ike 0:Du-CISCO_0:42: out D4DF6FF62FDFF6FB06686194B82DCE3608100501CFA6D9260000005CE0827B6571FF5813A48BC0AC73BCBC252C325B0B77F94EE577EDA75D773AC2EEA1EF8AB700E20354247F3B98D529933BBED7B21E612CA43D8609B711038AD3AD
ike 0:Du-CISCO_0:42: sent IKE msg (R-U-THERE): 84.73.193.80:4500->194.230.155.139:43685, len=92, id=d4df6ff62fdff6fb/06686194b82dce36:cfa6d926
ike 0: comes 194.230.155.139:43685->84.73.193.80:4500,ifindex=5....
ike 0: IKEv1 exchange=Informational id=d4df6ff62fdff6fb/06686194b82dce36:8fbe67c2 len=92
ike 0: in D4DF6FF62FDFF6FB06686194B82DCE36081005018FBE67C20000005C224C572F7D76A6CE36B1C8CB3C518D03966918BE6BD228B88AB67A2059E720B3FD9B5163FB569068BBDAB70A53E26836433D0E87FC3B96984BCDD737070899F0
ike 0:Du-CISCO_0:42: dec D4DF6FF62FDFF6FB06686194B82DCE36081005018FBE67C20000005C0C0000147AF600A450CEDFAE1636440CA40E11C70000001C0000000101100001D4DF6FF62FDFF6FB06686194B82DCE3600000000000000000000000000000010
ike 0:Du-CISCO_0:42: recv ISAKMP SA delete d4df6ff62fdff6fb/06686194b82dce36
ike 0:Du-CISCO_0: deleting
ike 0:Du-CISCO_0: flushing
ike 0:Du-CISCO_0: sending SNMP tunnel DOWN trap
ike 0:Du-CISCO_0: flushed
ike 0:Du-CISCO_0: delete dynamic
ike 0:Du-CISCO_0: reset NAT-T
ike 0:Du-CISCO_0: deleted
Announcements
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
Labels
-
FortiGate
8,742 -
FortiClient
1,775 -
5.2
801 -
FortiManager
736 -
5.4
639 -
FortiAnalyzer
563 -
FortiSwitch
476 -
FortiAP
474 -
FortiClient EMS
436 -
6.0
416 -
5.6
362 -
FortiMail
320 -
6.2
251 -
SSL-VPN
248 -
FortiAuthenticator v5.5
234 -
IPsec
212 -
FortiWeb
206 -
5.0
196 -
FortiNAC
190 -
FortiGuard
139 -
6.4
128 -
SD-WAN
117 -
FortiAuthenticator
105 -
FortiGateCloud
102 -
FortiSIEM
99 -
FortiCloud Products
98 -
FortiToken
92 -
Firewall policy
84 -
Customer Service
80 -
Wireless Controller
80 -
4.0MR3
64 -
FortiProxy
60 -
High Availability
56 -
FortiADC
54 -
Fortivoice
53 -
vlan
53 -
FortiEDR
52 -
ZTNA
49 -
Routing
47 -
FortiExtender
45 -
FortiSandbox
44 -
DNS
44 -
FortiDNS
42 -
LDAP
42 -
BGP
40 -
Authentication
39 -
FortiGate v5.4
35 -
SAML
35 -
NAT
35 -
Certificate
35 -
FortiSwitch v6.4
34 -
RADIUS
34 -
SSO
33 -
Interface
31 -
FortiConnect
30 -
VDOM
30 -
FortiLink
29 -
FortiWAN
27 -
Application control
27 -
Web profile
27 -
FortiConverter
25 -
Logging
25 -
Virtual IP
25 -
FortiGate v5.2
24 -
SSL SSH inspection
23 -
FortiPAM
22 -
Fortigate Cloud
20 -
FortiSwitch v6.2
19 -
FortiPortal
19 -
FortiGate-VM
18 -
FortiMonitor
18 -
Traffic shaping
17 -
SSID
16 -
WAN optimization
16 -
FortiDDoS
15 -
OSPF
15 -
Automation
15 -
FortiGate v5.0
14 -
FortiSoar
14 -
Static route
14 -
System settings
14 -
Web application firewall profile
14 -
IP address management - IPAM
14 -
SNMP
13 -
Admin
13 -
FortiCASB
12 -
FortiManager v5.0
11 -
FortiRecorder
11 -
Security profile
11 -
Proxy policy
11 -
FortiManager v4.0
10 -
FortiBridge
10 -
IPS signature
10 -
FortiAP profile
10 -
4.0MR2
9 -
FortiGate v4.0 MR3
9 -
FortiWeb v5.0
9 -
Traffic shaping policy
9 -
Intrusion prevention
9 -
FortiDeceptor
8 -
RMA Information and Announcements
8 -
Port policy
8 -
4.0
7 -
FortiAnalyzer v5.0
7 -
FortiCache
7 -
DNS filter
7 -
Antivirus profile
7 -
Fabric connector
7 -
Web rating
7 -
Fortinet Engage Partner Program
7 -
FortiToken Cloud
6 -
Explicit proxy
6 -
trunk
6 -
Packet capture
6 -
Traffic shaping profile
6 -
API
5 -
FortiTester
5 -
Users
5 -
Email filter profile
5 -
3.6
4 -
FortiCarrier
4 -
FortiScan
4 -
FortiDirector
4 -
Internet service database
4 -
Application signature
4 -
Authentication rule and scheme
4 -
DLP sensor
4 -
Netflow
4 -
Replacement messages
4 -
Cloud Management Security
4 -
FortiDB
3 -
FortiHypervisor
3 -
FortiNDR
3 -
NAC policy
3 -
DLP Dictionary
3 -
DLP profile
3 -
DoS policy
3 -
Protocol option
3 -
TACACS
3 -
SDN connector
3 -
Service
3 -
VoIP profile
3 -
Multicast routing
3 -
FortiInsight
2 -
FortiAI
2 -
Kerberos
2 -
Schedule
2 -
Multicast policy
2 -
Zone
2 -
Vulnerability Management
2 -
4.0MR1
1 -
FortiManager-VM
1 -
FortiCWP
1 -
Subscription Renewal Policy
1 -
Video Filter
1 -
ICAP profile
1
Top Kudoed Authors
| User | Count |
|---|---|
| 1733 | |
| 1106 | |
| 752 | |
| 447 | |
| 240 |
Broad. Integrated. Automated.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Security Research
Company
News & Articles
Copyright 2024 Fortinet, Inc. All Rights Reserved.