12-20-2002 12:47 AM - edited 02-21-2020 12:14 PM
Dear All,
Does anyone success to configure certificate-base VPN between NetScreen and VPN3000 ? We got the IKE (Phase1) established but no Phase2 session. Seems like there is an issue with the cert (we are using Entrust to generate cerficates). Would be very appreciate for any help
Best Regards,
Solved! Go to Solution.
12-23-2002 11:11 AM
Hi there,
Cert checking/validation is a part of IKE phase 1. If you are passing phase1, then cert should not be an issue
You should enable IKE, IKEDBG,IPSEC
Jazib
12-23-2002 11:11 AM
Hi there,
Cert checking/validation is a part of IKE phase 1. If you are passing phase1, then cert should not be an issue
You should enable IKE, IKEDBG,IPSEC
Jazib
12-24-2002 02:11 AM
Thanks, we are able to pinpoint the problem. It was something wrong with the cert. After we create a new cert and import it to both devices, they can negotiate the VPN without problem. The configuration is very simple, just a plain certificate-base VPN LAN2LAN.
Best Regards,
Engelhard
06-02-2003 09:59 AM
Hi, I'm also having similar problems. Can you please send me the details of how you did the config.
Thanks,
Naveen
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide