Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

L2L connection between Checkpoint NG and Cisco 3000 VPN concentrator

I get an error notice when trying to create connection. IKE phase1 goes OK but phase 2 gives error notice ' Received non-routine Notify message: Invalid ID info (18) '. Does someone know what can be wrong? I'am using 3DES - MD5 .

5 REPLIES
New Member

Re: L2L connection between Checkpoint NG and Cisco 3000 VPN conc

I faced similar problem, check the network list & routing table on both ends

Bronze

Re: L2L connection between Checkpoint NG and Cisco 3000 VPN conc

What feature pack are you using. I had a similar issue as well with FP2, and could never get it past phase2. I gave up thinking it was the CP firewall

-Chris

New Member

Re: L2L connection between Checkpoint NG and Cisco 3000 VPN conc

To resolve this issue 'Support key exchange for subnets' must be disabled in the VPN Advanced tab of the Interoperable Device object.

Let me know if it works

New Member

Re: L2L connection between Checkpoint NG and Cisco 3000 VPN conc

I am having the same issue. When I turn off Support for subnets I get a new error on the Checkpoint side: no subnet support in ike negotiations. Is there something that needs to be changed on the cisco side to make it work?

New Member

Re: L2L connection between Checkpoint NG and Cisco 3000 VPN conc

having same problem, has anybody delt with this?

285
Views
0
Helpful
5
Replies
CreatePlease to create content