Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Netscreen to PIX Phase 2 Failure on VPN

I am getting a phase 2 failure on the setup of a IKE VPN between a Netscreen 5 and a PIX 515e, Phase one is sucessfull... I have looked at everything..does any one know if these two devices are incompatible, and if they are are cool together can some one point me in the right direction as to what to check....

Thanks James

1 REPLY
New Member

Re: Netscreen to PIX Phase 2 Failure on VPN

From memory we had to use DES and SHA for phase 1 and 2 to get this to work. Also check the timeouts are the same both sides otherwise (as we found out) if the tunnel disconnects it takes the difference between them to re-negotiate.

3DES should work too but we didn't have it at this site.

188
Views
0
Helpful
1
Replies
CreatePlease to create content