I am trying to raise a VPN between a Network Contivity appliance and Cisco PIX Firewall with digital certificates and not with preshared key, but the VPN does not rise. We have followed the steps for the configuration of VPN with digital certificates generated by an CA described in the manuals of Cisco PIX.
I attach the log's generated by both machines.
ISAKMP (0): Checking ISAKMP transform 1 against priority 12 policy
ISAKMP: encryption 3DES-CBC
ISAKMP: hash MD5
ISAKMP: auth RSA sig
ISAKMP: default group 2
ISAKMP (0): atts are acceptable. Next payload is 3
ISAKMP (0): SA is doing RSA signature authentication using id type ID_IPV4_ADDR
Re: Contivity to PIX VPN with digital certificates
If there is a setting for pre-shared key authentication using ID type, if the ID type is set to ID_FQDN the contivity will give an error in invalid ID, the ID type on the Pix needs to be set to IPV4. Also PIX has to be configured for IKE identity negotiation instead of the hostname which is done by default. Hope this helps.
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...