OPNsense Forum

Archive => 18.1 Legacy Series => Topic started by: overopn on April 29, 2018, 08:53:17 am

Title: IPSec Road Warrior received proposals inacceptable
Post by: overopn on April 29, 2018, 08:53:17 am: I've setup and open the firewalls following this opensense guide

https://docs.opnsense.org/manual/how-tos/ipsec-road.html

The tunnel setup I've followed this pfsense guide. This guide works when I setup on pfsense.

https://forum.pfsense.org/index.php?topic=127457.0

Mobile Client Phase 1
Key Exchange version V2

Phase 1 proposal
EAP-MSCHAPV2
My Identifier (Tried various settings, My IP Adrress, IPAddress,

I'm usin windows 7 to connect, imported the CA cert fine, and but I cannot connect. The log shows

Apr 29 14:38:16   charon: 14[NET] sending packet: from 192.168.1.239[500] to 192.168.1.99[500] (36 bytes)
Apr 29 14:38:16   charon: 14[ENC] generating IKE_SA_INIT response 0 [ N(NO_PROP) ]
Apr 29 14:38:16   charon: 14[IKE] received proposals inacceptable
Apr 29 14:38:16   charon: 14[CFG] configured proposals: IKE:AES_CBC_256/HMAC_SHA2_256_128/PRF_HMAC_SHA2_256/MODP_2048_256
Apr 29 14:38:16   charon: 14[CFG] received proposals: IKE:3DES_CBC/HMAC_SHA1_96/PRF_HMAC_SHA1/MODP_1024, IKE:AES_CBC_256/HMAC_SHA1_96/PRF_HMAC_SHA1/MODP_1024, IKE:3DES_CBC/HMAC_SHA2_256_128/PRF_HMAC_SHA2_256/MODP_1024, IKE:AES_CBC_256/HMAC_SHA2_256_128/PRF_HMAC_SHA2_256/MODP_1024, IKE:3DES_CBC/HMAC_SHA2_384_192/PRF_HMAC_SHA2_384/MODP_1024, IKE:AES_CBC_256/HMAC_SHA2_384_192/PRF_HMAC_SHA2_384/MODP_1024

(https://filedn.com/l3TGy7Y83c247u0RDYa9fkp/temp/pfsense/pfsensefirewall.jpg)

SMF 2.0.19 | SMF © 2021, Simple Machines
Privacy Policy