Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
520
Views
0
Helpful
2
Replies

VPN backup with isdn

tdorduncu
Level 1
Level 1

‎11-27-2007 01:01 PM

i want to make a vpn back up solution with isdn ddr.i have ipsec tunnel over leased line.i had complete configuration when the vpn goes down as secondary link comes up but doesnt establish phase 1 state.

Is there any configuration guide or link you ve suggested ?

best regards

Labels:
0 Helpful
2 Replies 2

Goutam Sanyal
Level 4
Level 4

‎11-28-2007 02:18 AM

Hi,

Is that LL or MPLS? If LL then pls put the output. If MPLS then there is no provision to connect the IPSec VPN without dialing it again.

thanks

Goutam

0 Helpful

tdorduncu
Level 1
Level 1
In response to Goutam Sanyal

‎11-29-2007 05:30 AM

here is output ;

crypto isakmp policy 10

encr 3des

hash md5

authentication pre-share

group 2

crypto isakmp key x.x.x.x address a.a.a.a

!

!

crypto ipsec transform-set a.a.a.a esp-3des esp-md5-hmac

!

crypto map name 1 ipsec-isakmp

set peer x.x.x.x

set transform-set name

match address 101

!

crypto map namex 2 ipsec-isakmp

set peer x.x.x.x

set transform-set name

match address 101

Nov 28 06:55:03.003: ISAKMP (0:3): SA has been authenticated with x.x.x.x

Nov 28 06:55:03.003: ISAKMP (0:3): peer matches *none* of the profiles

Nov 28 06:55:03.003: ISAKMP (0:3): Input = IKE_MESG_FROM_PEER, IKE_MM_EXCH

Nov 28 06:55:03.003: ISAKMP (0:3): Old State = IKE_I_MM5 New State = IKE_I_MM6

Nov 28 06:55:03.003: ISAKMP (0:3): Input = IKE_MESG_INTERNAL, IKE_PROCESS_MAIN_MODE

Nov 28 06:55:03.003: ISAKMP (0:3): Old State = IKE_I_MM6 New State = IKE_I_MM6

Nov 28 06:55:03.003: ISAKMP (0:3): Input = IKE_MESG_INTERNAL, IKE_PROCESS_COMPLETE

Nov 28 06:55:03.003: ISAKMP (0:3): Old State = IKE_I_MM6 New State = IKE_P1_COMPLETE

Nov 28 06:55:03.003: ISAKMP (0:3): beginning Quick Mode exchange, M-ID of 1748821339

Nov 28 06:55:03.003: ISAKMP (0:3): sending packet to x.x.x.x my_port 500 peer_port 500 (I) QM_IDLE

Nov 28 06:55:03.003: ISAKMP (0:3): Node 1748821339, Input = IKE_MESG_INTERNAL, IKE_INIT_QM

Nov 28 06:55:03.003: ISAKMP (0:3): Old State = IKE_QM_READY New State = IKE_QM_I_QM1

Nov 28 06:55:03.003: ISAKMP (0:3): Input = IKE_MESG_INTERNAL, IKE_PHASE1_COMPLETE

Nov 28 06:55:03.003: ISAKMP (0:3): Old State = IKE_P1_COMPLETE New State = IKE_P1_COMPLETE

Nov 28 06:55:03.063: ISAKMP (0:3): received packet from x.x.x.x dport 500 sport 500 Global (I) QM_IDLE

Nov 28 06:55:03.067: ISAKMP: set new node -2045034915 to QM_IDLE

Nov 28 06:55:03.067: ISAKMP (0:3): processing HASH payload. message ID = -2045034915

Nov 28 06:55:03.067: ISAKMP (0:3): processing NOTIFY PROPOSAL_NOT_CHOSEN protocol 3

spi 1689364849, message ID = -2045034915, sa = 646EACC0

Nov 28 06:55:03.067: ISAKMP (0:3): deleting spi 1689364849 message ID = 1748821339

Nov 28 06:55:03.067: ISAKMP (0:3): deleting node 1748821339 error TRUE reason "delete_larval"

Nov 28 06:55:03.067: ISAKMP (0:3): deleting node -2045034915 error FALSE reason "informational (in) state 1"

Nov 28 06:55:03.067: ISAKMP (0:3): Input = IKE_MESG_FROM_PEER, IKE_INFO_NOTIFY

Nov 28 06:55:03.067: ISAKMP (0:3): Old State = IKE_P1_COMPLETE New State = IKE_P1_COMPLETE

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents