.Dec 11 06:20:08.637: ISAKMP: life type in seconds
.Dec 11 06:20:08.637: ISAKMP: life duration (VPI) of 0x0 0x20 0xC4 0x9B
.Dec 11 06:20:08.637: ISAKMP (0:119): Xauth authentication by pre-shared key off
ered but does not match policy!
The last line of the log indicates xauth authentication by pre-shared key offerred dose not match policy. However I have defined a specific crypto policy using pre-shared key authenticaion.
I have tried a few days to resolve the problem but to no avail. Your help will be greatly appreciated. Attached is the config file Here is the config file ( for security reasons, IP addresses have been replaced and some of sensitive data are markes as xxxx )
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...