CISCO ROUTER - Nortel Contivity VPN

Unanswered Question
Jan 21st, 2009

Dear All,

I have to initiate a IPSec tunnel from Cisco router (which is having ADSL modem internet connection) to nortel contivity. At Router side the IP address will be dynamic. I am getting an error saysing "Notify has no hash - Rejected."

I was updated that we need to try with Initator ID in cisco router.

Can some one help me to configure the same (cisco router IPSec with Initiator ID)

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.

The normal initiator ID normally is an IP address or certificate.

Since the router connects to an ADSl line - the IP will be DHCP and could be differnet every time. So you cannot configure the IP address in the Nortel.

The issue is with the Nortel end - it needs to be able to accept "aggresive" connections which = dynamic VPN's when the source is unknown.

HTH>

prasad.gsmc Wed, 01/21/2009 - 19:54

Thanks for the Update

some queries

1) whether we need to do aggresive mode at Cisco side too?

2) any useful link available for refernce?

To answer:

1) not really - how are you going to connect to the Cisco router if the IP address is likely to change? You only need to confiogure "Aggressive" connections when you do not know the IP address. I presume the Nortel has a static IP - you need to terminate the VPN the VPN from Cisco to Nortel.

2) Sorry - not a Nortel guy!!

HTH>

Actions

This Discussion