Error message on cisco 4500 router

ahvn · ‎08-20-2003

Dear all,

Kindly help out to parse the following error message I found in my router.I am running OSPF in my network and could anyone pls inform me what could be wrong seeing this error msg,

2d00h: %CRYPTO-6-IKMP_MODE_FAILURE: Processing of Main mode failed with peer at

208.36.69.75

The ip which is mentioned in the mssg has nothing to do with my network.

Rgds,

Homin

rais · ‎08-20-2003

You have a mismatch in crypto attributes on both sides. Make sure encryption algo, authentication algo, hashing etc. are same on both sides.

Also debug ISAKMP and see if you can glean into specific details.

Thanks.

dngembus · ‎08-20-2003

The explanation of your router error can be verified from cisco's output intepreter as follows:

%CRYPTO-6-IKMP_MODE_FAILURE (x1): Processing of [chars] mode failed with peer at [IP_address]

Explanation: Negotiation with the remote peer has failed.

I hope this helps.

Ngembus D

Network Engineer, Nettek System Consultants.

thisisshanky · ‎08-20-2003

If this is a production network, and this router is running several other tunnels (which are up), I would not recommend using debug commands, during peak hours. Trying doing debugs only after hours, or during a downtime window, incase if the router stops responding.

The debug command you can use is,

debug crypto isakmp

If you can paste the output here, we can find out what the problem is.

Sankar Nair
UC Solutions Architect
Pacific Northwest | CDW
CCIE Collaboration #17135 Emeritus