VPN Client error

Unanswered Question
Sep 11th, 2007
User Badges:

I have a Pix-501 ver 6.3(4). Trying to connect with VPN clients which used to work just fine. Now getting the following error:


ISAKMP: init_phase1_fields failed

crypto_isakmp_process_block:src:66.162.9.208, dest:24.106.88.210 spt:63 dpt:500

VPN Peer:ISAKMP: Peer Info for 66.162.9.208/0 not found - peers:10


If I reboot the Pix the vpn clients connect fine. Is there a limit to how many peers maybe? I can't find any documentation that says there is.


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
xakep Tue, 09/11/2007 - 07:38
User Badges:

Have you checked your license?

Anand Narayana Tue, 09/11/2007 - 23:52
User Badges:
  • Silver, 250 points or more

Hi,

This device has recorded a Peer Info for 66.162.9.208/0 not found - peers:10

log message. This error indicates a configuration mismatch.

You can try by ensuring that the IP address of peer in Isakmp key keystring address peer-address PIX command is correct. Check the network connectivity to the peer on udp port 500. In the Access control list that defines interesting traffic for VPN, if the larger network is used then change the ACL to match the specific host first.

Actions

This Discussion