Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
416
Views
1
Helpful
1
Replies

IPSec VTI and MS ISA Server 2004

alex
Level 1
Level 1

‎09-26-2006 07:34 AM - edited ‎02-21-2020 02:38 PM

Good day!

We trying to design IPSec tunnel between MS ISA Server 2004 and Cisco2821 using virtual tunnel interface on router.

Problem is: IKE sa formed, IPSec sa not created. Crypto session goes to UP-IDLE.

Debug shown that cisco sent IPSEC "(key eng. msg.)" twice, dont got answer from ISA (in debug: IPSEC(key_engine): request timer fired: count = 2), and then return to IKE phase 1.

There are 2 another VTI tunnels cisco-cisco, that works fine.

Can anyone help with that solutions?

Labels:
0 Helpful
1 Reply 1

gmarogi
Level 5
Level 5

‎10-03-2006 03:26 PM

Try replacing MS IPSEC termination with a PIX

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents