VPN Client error

Unanswered Question
Sep 11th, 2007

I have a Pix-501 ver 6.3(4). Trying to connect with VPN clients which used to work just fine. Now getting the following error:


ISAKMP: init_phase1_fields failed

crypto_isakmp_process_block:src:66.162.9.208, dest:24.106.88.210 spt:63 dpt:500

VPN Peer:ISAKMP: Peer Info for 66.162.9.208/0 not found - peers:10


If I reboot the Pix the vpn clients connect fine. Is there a limit to how many peers maybe? I can't find any documentation that says there is.


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Anand Narayana Tue, 09/11/2007 - 23:52

Hi,

This device has recorded a Peer Info for 66.162.9.208/0 not found - peers:10

log message. This error indicates a configuration mismatch.

You can try by ensuring that the IP address of peer in Isakmp key keystring address peer-address PIX command is correct. Check the network connectivity to the peer on udp port 500. In the Access control list that defines interesting traffic for VPN, if the larger network is used then change the ACL to match the specific host first.

Actions

This Discussion