IPSEC with Radius no IKE config found

Started by lirees, March 14, 2023, 08:43:50 AM

Previous topic - Next topic
Print
Go Down Pages1 2 3
User actions
March 14, 2023, 08:43:50 AM
i would migrate my pfsense installation to opnsense, all good but the configuration of the ipsec is a nightmare that i can't get over

i have always configure the ipsec with radius on pfsense in this way without problem, so i have reported all the steps on opnsense 23.1 ( fresh installation ) but not work ... i don't understand where i wrong


FQDN : vpn.mydomain.com ( for the external dns and as hostname of the opnsense machine )

System > Trust > Authorities
   Descriptive name : CA_IPSEC
   Common Name : vpn.mydomain.com
   Lifetime : 3650
       
System > Trust > Certificates
   Descriptive name : vpn.mydomain.com
   Type : Server Cerificate
   Lifetime : 3650
   Common Name : vpn.mydomain.com
   Alternative Names ( DNS ) : vpn.mydomain.com
   
- System > Access > Servers
   add and test the connection of the radius server

- Firewall > Rules > WAN
   open ports 500 and 4500 tpc/udp ipv4

- VPN > IPsec > Mobile Clients
   Enable : checked
   Backend for authentication : my_radius_server
   Virtual IPv4 Address Pool  : 192.168.100.0/24
   Network List : checked
   DNS Default Domain : checked ( mydomain.loc )
   DNS Servers checked : 172.16.10.1
   Phase 2 PFS Group : OFF
   
- VPN > IPsec > Tunnel Settings ( phase 1 )
   Connection method : start on traffic ( try also the other )
   Key Exchange version : V2
   Authentication method : EAP-RADIUS
   My identifier ( DN ) : vpn.mydomain.com
   My Certificate : vpn.mydomain.com
   Radius servers : my_radius_server
   Hash algorithm : SHA256
   DH key group : 14
   Dead Peer Detection : checked
   Lifetime : 28800

- VPN > IPsec > Tunnel Settings ( phase 2 )
   Type : LAN Subnet
   Protocol : ESP
   Encryption algorithms : AES256
   Hash algorithms : SHA1, SHA256
   PFS key group : OFF
   Lifetime : 3600
   

then i download the CA_IPSEC cert on the windows 10/11 client and install on Local Machine under Trusted Root Certification Authorities

for the configuration of the ipsec connection client side i use a simply power shell script run as administrator

Add-VpnConnection -Name "MYOFFICE" -ServerAddress "vpn.mydomain.com" -TunnelType IKEv2 -AuthenticationMethod EAP -EncryptionLevel "Required" -SplitTunneling -AllUserConnection
Set-VpnConnectionIPsecConfiguration -ConnectionName "MYOFFICE" -AuthenticationTransformConstants SHA256128 -CipherTransformConstants AES256 -EncryptionMethod AES256 -IntegrityCheckMethod SHA256 -DHGroup Group14 -PfsGroup None -PassThru -Force
Add-VpnConnectionRoute -ConnectionName "MYOFFICE" -DestinationPrefix 172.16.10.0/24 -PassThru

with pfsense this procedure work like charm, with opnsense the error when i try to connect is always ( opnsense side ):
   
[IKE] no IKE config found for xx.xx.xx.xxx. ...yyy.yyy.y.y..y.y, sending NO_PROPOSAL_CHOSEN   
[ENC] parsed IKE_SA_INIT request 0 [ SA KE No N(FRAG_SUP) N(NATD_S_IP) N(NATD_D_IP) V V V V ]

on windows side :

The user [username] dialed a connection named [connection name] which has failed. The error code returned on failure is 13868.

i understand that the error in the logs is indicates that the IKEv2 security policy on the client did not match the configuration on the server but i can't don't understand where is the error and why whit pfsense work

Thanks in advance


P.S. why the IPEC service doesn't start automatically .. i need to run the command /usr/local/sbin/ipsec start from shell for have the service up and running

thanks
March 14, 2023, 09:53:17 AM #1
 Firewall > Rules > WAN
   open ports 500 and 4500 tpc/udp ipv4

You need to open 500 and 4500 only for UDP, but the ESP rule is missing.
March 14, 2023, 10:06:53 AM #2
thanks for your reply

if you referring to ESP in phase 2 it is specified ..

- VPN > IPsec > Tunnel Settings ( phase 2 )
   Type : LAN Subnet
   Protocol : ESP
   Encryption algorithms : AES256
   Hash algorithms : SHA1, SHA256
   PFS key group : OFF
   Lifetime : 3600

i have changed the rule for port 500 and 4500 only udp but nothing change
March 14, 2023, 10:11:24 AM #3
sorry for the mistake

you refer to the ESP rule on wan interface... rule added problem still persist
March 14, 2023, 11:04:39 AM #4
Please remove.
- VPN > IPsec > Mobile Clients
  Virtual IPv4 Address Pool  : 192.168.100.0/24
The IP address should be provided by the Radius server

- VPN > IPsec > Tunnel Settings ( phase 2 )
   Type : LAN Subnet
Enter Network and 0.0.0.0/0 here
March 14, 2023, 11:24:22 AM #5
done ..  no IKE config found for xxxxxxxx...xxxxxxx, sending NO_PROPOSAL_CHOSEN
March 14, 2023, 11:45:21 AM #6
Maybe there is an issue with your certificates. Please run a trace.

Netsh trace start VpnClient per=yes maxsize=0 filemode=single

.... connection test ...

Netsh trace stop

The trace file file can be read with the Event Viewer. Use filter RRAS-Provider .
March 14, 2023, 12:37:43 PM #7 Last Edit: March 16, 2023, 07:51:17 AM by lirees
done ... this is the complete log

Code Select
LLivello Data e ora Origine ID evento Categoria attività
Errore 14/03/2023 12:32:41 Microsoft-Windows-RRAS 12000 Nessuna From !!!!!SDOWRAPPER.LIB!!!!!!!!!!
Errore 14/03/2023 12:32:41 Microsoft-Windows-RRAS 12000 Nessuna From !!!!!SDOWRAPPER.LIB!!!!!!!!!!
Informazioni 14/03/2023 12:32:41 Microsoft-Windows-RRAS 16001 Nessuna IPv6CP: Setting tracing parameters
Informazioni 14/03/2023 12:32:41 Microsoft-Windows-RRAS 16001 Nessuna PAP: Setting tracing parameters
Informazioni 14/03/2023 12:32:41 Microsoft-Windows-RRAS 6001 Nessuna FROM !!!!!WFP.LIB!!!!!!!!
Informazioni 14/03/2023 12:32:41 Microsoft-Windows-RRAS 14001 Nessuna From !!!!HOSTROUT.LIB!!!!!
Informazioni 14/03/2023 12:32:51 Microsoft-Windows-RRAS 6001 Nessuna VPNIKE Recevied message PROTOCOL_MSG_GetNewIkeTunnelId
Informazioni 14/03/2023 12:32:51 Microsoft-Windows-RRAS 6001 Nessuna Entering BaseConnectionFactory::GenerateConnectionId...
Informazioni 14/03/2023 12:32:51 Microsoft-Windows-RRAS 6001 Nessuna Leaving BaseConnectionFactory::GenerateConnectionId (status: 0).
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna VPNIKE Recevied message PROTOCOL_MSG_Start
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Entering ConnectionTable::GetConnection...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Leaving ConnectionTable::GetConnection
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Entering VPNIKEProtocolEngine::GetRasDeviceParams...
Errore 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6002 Nessuna RasDeviceGetInfo=603,s=294
Errore 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6002 Nessuna RasDeviceGetInfo=0,s=294,noParams=3
Errore 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6002 Nessuna ConnectionId=4,Destination IP=x.xx.xx.xxx
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Leaving VPNIKEProtocolEngine::GetRasDeviceParams (status: 0).
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Username: administrator
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Domain:
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Un-expected PSK size: 0 received. Ignoring the PSK.
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna CorrelationGuid: {13174144-53AF-0002-3093-2913AF53D901}
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna PhonebookPath: [C:\ProgramData\Microsoft\Network\Connections\Pbk\rasphone.pbk], EntryName: [VM4B]
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Destination Address: [x.xx.xx.xxx]
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna ConfigFlags: 0x08009288, ProtocolConfigFlags: 0x00000288
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna IdleTimeOut: -1, NetworkOutageTime: 1800
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna ipv6addres [IpRemote=0]
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna PrefixLength [0]
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Entering VPNIKEConnectionFactory::CreateConnection...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Entering BaseConnection::BaseConnection...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Configured IdleTimeOut:4294967295, approx. value used:4294967295
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna InterfaceIndex:12, MTU:1500
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Leaving BaseConnection::BaseConnection (status: 0).
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Entering VPNIKEConnection::VPNIKEConnection...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Entering IPv4Helper::IPv4Helper...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Leaving IPv4Helper::IPv4Helper (status: 0).
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Entering IPv6Helper::IPv6Helper...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Leaving IPv6Helper::IPv6Helper
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Entering IPNotifications::IPNotifications...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Leaving IPNotifications::IPNotifications
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Created new IPNotifications instance
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Leaving VPNIKEConnection::VPNIKEConnection (status: 0).
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Entering VPNIKEClientConnection::VPNIKEClientConnection...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Entering BFEHandler::BFEHandler...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Entering BFEHandler::GetBfeHandle...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Leaving BFEHandler::GetBfeHandle (status: 0).
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Leaving BFEHandler::BFEHandler (status: 0).
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Entering ClientBFEHandler::ClientBFEHandler...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Leaving ClientBFEHandler::ClientBFEHandler
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna BaseAAAHelper Instance is getting created
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Auth type is EAP hence initiating ClientEAPAuthHandler
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Entering EAPAuthHandler::EAPAuthHandler...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Leaving EAPAuthHandler::EAPAuthHandler
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Entering ClientEAPAuthHandler::ClientEAPAuthHandler...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Leaving ClientEAPAuthHandler::ClientEAPAuthHandler
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Leaving VPNIKEClientConnection::VPNIKEClientConnection (status: 0).
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Entering ConnectionTable::Add...
Errore 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6000 Nessuna Add new connection with Id 4 @ index 4
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Leaving ConnectionTable::Add (status: 0).
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Signalling the event that the number of connections are atleast 1
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Leaving VPNIKEConnectionFactory::CreateConnection (status: 0).
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Entering BFEHandler::PopulateTrafficSelectors...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Entering TrafficSelectors::TrafficSelectors...
Errore 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6000 Nessuna Total list of TS Payloads = 1
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Leaving TrafficSelectors::TrafficSelectors
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Entering TrafficSelectors::InitTsPayloads...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Entering TrafficSelectors::PopulateTsPayloadById...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Entering TrafficSelectors::GetDefaultTs...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Leaving TrafficSelectors::GetDefaultTs
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Entering TrafficSelectors::GetDefaultTs...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Leaving TrafficSelectors::GetDefaultTs
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Leaving TrafficSelectors::PopulateTsPayloadById
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Leaving TrafficSelectors::InitTsPayloads
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Leaving BFEHandler::PopulateTrafficSelectors (status: 0).
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Entering ThreadPoolHelper::QueueWorkItem...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Leaving ThreadPoolHelper::QueueWorkItem (status: 0).
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Entering VPNIKEProtocolEngine::DispatchMessageA...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Processing PROTOCOL_MSG_Start for hPort=3
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Entering ConnectionTable::GetConnection...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Leaving ConnectionTable::GetConnection
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Entering VPNIKEClientConnection::ProcessStart...
Errore 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6002 Nessuna ===> Eap Method Type : 26
Errore 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6002 Nessuna SetEapAuthData EapBegin EapMethodId =  0
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Entering ClientBFEHandler::PlumbPolicy...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Adding Policy for Server address
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Building custom Client IKEv2 proposals
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Custom Client IKEv2 proposal count: 1
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Adding EAP as LocalAuth method
Errore 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6002 Nessuna IsPeerCertValidationForEapDiasabled: RegQueryValueEx for IkeAuthTypeNoServerCert failed with 2
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Adding Cert as RemoteAuth method
Errore 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6002 Nessuna IsCertRequestPayloadDisabled: RegQueryValueEx for DisableCertReqPayload failed with 2
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Adding Cert(method type: 7) as RemoteAuth method
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Adding Cert(method type: 8) as RemoteAuth method
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Chosen encryption: 3,localauth: 1,remoteauth: 2
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Entering BFEHandler::GetBfeHandle...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Leaving BFEHandler::GetBfeHandle (status: 0).
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Leaving ClientBFEHandler::PlumbPolicy (status: 0).
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Adding header v4 remote address to additional addresses
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Entering LogAdditionalAddresses...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna "Additional Address:
NumberOfIPv4Address: [1]
[0]:x.xx.xx.xxx
NumberOfIPv6Address: [0]"
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Leaving LogAdditionalAddresses
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Entering VPNIKEConnection::UpdatePeerAdditionalAddresses...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Leaving VPNIKEConnection::UpdatePeerAdditionalAddresses
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Entering ClientBFEHandler::StartSANegotiation...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Entering BFEHandler::GetBfeHandle...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Leaving BFEHandler::GetBfeHandle (status: 0).
Errore 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6002 Nessuna IsCertSubjectNameCheckDisabled failed: RegQueryValueEx for DisableIKENameEkuCheck failed with 2
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna TunnelProtocolV4
Errore 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6000 Nessuna StartService failed with error: 0
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Leaving ClientBFEHandler::StartSANegotiation (status: 0).
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna UpdateState: 0x00000001
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Leaving VPNIKEClientConnection::ProcessStart (status: 0).
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Processing done PROTOCOL_MSG_Start for hPort=3. Error:0
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Leaving VPNIKEProtocolEngine::DispatchMessageA (status: 0).
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 8001 Nessuna Entered: CloseTunnel
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 8001 Nessuna Entering InitializeVpnIkeRpcClient...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 8001 Nessuna Leaving InitializeVpnIkeRpcClient
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Entering VpnikeCloseTunnel...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Tunnel ID: 0x4, Failure reason: 13868
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Entering SignalSynchronizingEvent...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Entering SynchronizationEventManager::SignalAndDeleteEventHandle...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Entering SynchronizationEventManager::SignalEventHandle...
Errore 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6000 Nessuna SyncEventEntry object with 4 could NOT be found
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Leaving SynchronizationEventManager::SignalEventHandle (status: 1168).
Errore 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6000 Nessuna SignalEventHandle failed: 1168
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Leaving SynchronizationEventManager::SignalAndDeleteEventHandle (status: 1168).
Errore 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6000 Nessuna Signaling of synchronizing event failed. Error = 1168
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Leaving SignalSynchronizingEvent (status: 1168).
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Entering ConnectionTable::GetConnection...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Leaving ConnectionTable::GetConnection
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Entering VPNIKEClientConnection::CloseTunnel...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Entering VPNIKEClientConnection::InitiateIkeCompleteCallback...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna UpdateState: 0x00000801
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Processing Close Tunnel with reason: 13868
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Entering VPNIKEClientConnection::Disconnect...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna UpdateState: 0x00100801
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Entering VPNIKEConnection::Disconnect...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna DisconnectReason: 2
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Entering IPv4Helper::Cleanup...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Entering IPv4Helper::ResetIPv4Settings...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Leaving IPv4Helper::ResetIPv4Settings (status: 0).
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Leaving IPv4Helper::Cleanup (status: 0).
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Entering IPv6Helper::Cleanup...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Entering IPv6Helper::ResetIPv6Settings...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Leaving IPv6Helper::ResetIPv6Settings (status: 0).
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Leaving IPv6Helper::Cleanup (status: 0).
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Leaving VPNIKEConnection::Disconnect
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Entering ClientBFEHandler::DeletePolicy...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Entering BFEHandler::GetBfeHandle...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Leaving BFEHandler::GetBfeHandle (status: 0).
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Leaving ClientBFEHandler::DeletePolicy
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Leaving VPNIKEClientConnection::Disconnect
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Connection State: 0x00100801
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Leaving VPNIKEClientConnection::CloseTunnel (status: 0).
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Leaving VpnikeCloseTunnel (status: 0).
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna InitiateIkeCompleteCallback:SA negotiation failure Status:13868 for TunnelID: 4
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna InitiateIkeCompleteCallback:All SA negotiation completed. Status:13868 for TunnelID: 4
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 8001 Nessuna Leaving: CloseTunnel
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna UpdateState: 0x00100C03
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna NotifyCaller(hPort=3, PROTOCOL_RES_Failure)
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Connection State: 0x00100C03
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Leaving VPNIKEClientConnection::InitiateIkeCompleteCallback
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna VPNIKE Recevied message PROTOCOL_MSG_Stop
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Entering ThreadPoolHelper::QueueWorkItem...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Leaving ThreadPoolHelper::QueueWorkItem (status: 0).
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Entering VPNIKEProtocolEngine::DispatchMessageA...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Processing PROTOCOL_MSG_Stop for hPort=3
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Entering ConnectionTable::GetConnection...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Leaving ConnectionTable::GetConnection
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Entering VPNIKEClientConnection::ProcessStop...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna UpdateState: 0x00101C03
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Entering VPNIKEClientConnection::Disconnect...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Disconnect is in progress. No need to initiate again.
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Leaving VPNIKEClientConnection::Disconnect
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna UpdateState: 0x00103C03
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Connection State: 0x00103C03
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Notify Rasman about VPNIKE connection stopped
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna NotifyCaller(hPort=3, PROTOCOL_RES_Stopped)
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna VPNIKE Recevied message PROTOCOL_MSG_LineDown
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Entering ThreadPoolHelper::QueueWorkItem...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Leaving ThreadPoolHelper::QueueWorkItem (status: 0).
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Entering VPNIKEProtocolEngine::DispatchMessageA...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Processing PROTOCOL_MSG_LineDown for hPort=3
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Entering ConnectionTable::GetConnection...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Leaving ConnectionTable::GetConnection
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna UpdateState: 0x00107C03
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Leaving VPNIKEClientConnection::ProcessStop
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Processing done PROTOCOL_MSG_Stop for hPort=3. Error:0
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Leaving VPNIKEProtocolEngine::DispatchMessageA (status: 0).
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Entering VPNIKEClientConnection::ProcessLineDown...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna UpdateState: 0x0010FC03
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Entering VPNIKEClientConnection::Disconnect...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Connection already disconnected. Hence nothing to cleanup
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Leaving VPNIKEClientConnection::Disconnect
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Leaving VPNIKEClientConnection::ProcessLineDown
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Entering VPNIKEConnection::IdleTimerStop...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Leaving VPNIKEConnection::IdleTimerStop
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Entering ConnectionTable::Remove...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Found the connection object 4 at index 4
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Removed connection with Id 4 at index 4
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Leaving ConnectionTable::Remove
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Entering BaseConnectionFactory::ReleaseConnectionId...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Leaving BaseConnectionFactory::ReleaseConnectionId
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Entering VPNIKEClientConnection::~VPNIKEClientConnection...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Entering RADIUSAccounting::StopInterimAccouting...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Leaving RADIUSAccounting::StopInterimAccouting
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna BaseAAAHelper Instance is getting Deleted
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Leaving VPNIKEClientConnection::~VPNIKEClientConnection
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Entering VPNIKEConnection::~VPNIKEConnection...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Entering VPNIKEConnection::Cleanup...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Entering VPNIKEConnection::IdleTimerStop...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Leaving VPNIKEConnection::IdleTimerStop
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Entering ClientBFEHandler::~ClientBFEHandler...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Leaving ClientBFEHandler::~ClientBFEHandler
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Entering BFEHandler::~BFEHandler...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Entering TrafficSelectors::~TrafficSelectors...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Leaving TrafficSelectors::~TrafficSelectors
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Leaving BFEHandler::~BFEHandler
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Entering IPv4Helper::~IPv4Helper...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Leaving IPv4Helper::~IPv4Helper
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Entering IPv6Helper::~IPv6Helper...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Leaving IPv6Helper::~IPv6Helper
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Entering ClientEAPAuthHandler::~ClientEAPAuthHandler...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Entering ClientEAPAuthHandler::Cleanup...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Leaving ClientEAPAuthHandler::Cleanup
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Leaving ClientEAPAuthHandler::~ClientEAPAuthHandler
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Entering EAPAuthHandler::~EAPAuthHandler...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Leaving EAPAuthHandler::~EAPAuthHandler
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Deleting IPNotifications instance
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Entering IPNotifications::~IPNotifications...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Entering IPNotifications::Cleanup...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Leaving IPNotifications::Cleanup
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Leaving IPNotifications::~IPNotifications
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Leaving VPNIKEConnection::Cleanup
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Leaving VPNIKEConnection::~VPNIKEConnection
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Entering BaseConnection::~BaseConnection...
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Leaving BaseConnection::~BaseConnection
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6001 Nessuna Signalling the event that the number of connections have reached to zero
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Processing done PROTOCOL_MSG_LineDown for hPort=3. Error:0
Informazioni 14/03/2023 12:32:58 Microsoft-Windows-RRAS 6003 Nessuna Leaving VPNIKEProtocolEngine::DispatchMessageA (status: 0).
Informazioni 14/03/2023 12:33:00 Microsoft-Windows-RRAS 6001 Nessuna VPNIKE Recevied message PROTOCOL_MSG_GetNewIkeTunnelId
Informazioni 14/03/2023 12:33:00 Microsoft-Windows-RRAS 6001 Nessuna Entering BaseConnectionFactory::GenerateConnectionId...
Informazioni 14/03/2023 12:33:00 Microsoft-Windows-RRAS 6001 Nessuna Leaving BaseConnectionFactory::GenerateConnectionId (status: 0).
Informazioni 14/03/2023 12:33:08 Microsoft-Windows-RRAS 6001 Nessuna VPNIKE Recevied message PROTOCOL_MSG_Start
Informazioni 14/03/2023 12:33:08 Microsoft-Windows-RRAS 6001 Nessuna Entering ConnectionTable::GetConnection...
Informazioni 14/03/2023 12:33:08 Microsoft-Windows-RRAS 6001 Nessuna Leaving ConnectionTable::GetConnection
Informazioni 14/03/2023 12:33:08 Microsoft-Windows-RRAS 6003 Nessuna Entering VPNIKEProtocolEngine::GetRasDeviceParams...
Errore 14/03/2023 12:33:08 Microsoft-Windows-RRAS 6002 Nessuna RasDeviceGetInfo=603,s=294
Errore 14/03/2023 12:33:08 Microsoft-Windows-RRAS 6002 Nessuna RasDeviceGetInfo=0,s=294,noParams=3
Errore 14/03/2023 12:33:08 Microsoft-Windows-RRAS 6002 Nessuna ConnectionId=5,Destination IP=x.xx.xx.xxx
Informazioni 14/03/2023 12:33:08 Microsoft-Windows-RRAS 6003 Nessuna Leaving VPNIKEProtocolEngine::GetRasDeviceParams (status: 0).
Informazioni 14/03/2023 12:33:08 Microsoft-Windows-RRAS 6001 Nessuna Username: administrator
Informazioni 14/03/2023 12:33:08 Microsoft-Windows-RRAS 6001 Nessuna Domain:
Informazioni 14/03/2023 12:33:08 Microsoft-Windows-RRAS 6001 Nessuna Un-expected PSK size: 0 received. Ignoring the PSK.
Informazioni 14/03/2023 12:33:08 Microsoft-Windows-RRAS 6001 Nessuna CorrelationGuid: {13174144-53AF-0002-6D93-2913AF53D901}
March 14, 2023, 03:23:38 PM #8
Not really helpful.  :(
Maybe this is better.

netsh trace start WFP-IPsec per=yes maxsize=0 filemode=single
March 14, 2023, 04:58:03 PM #9 Last Edit: March 16, 2023, 07:51:37 AM by lirees
the only log different from "Informazioni   14/03/2023 16:49:28      0   Nessuna" are this

Code Select
........
Informazioni 14/03/2023 16:49:28 0 Nessuna
Informazioni 14/03/2023 16:49:28 Microsoft-Windows-WFP 1013 Nessuna IPsec: Main Mode SA Terminated
Informazioni 14/03/2023 16:49:28 0 Nessuna
Informazioni 14/03/2023 16:49:28 Microsoft-Windows-WFP 1026 Nessuna WFP: User Mode Error
Informazioni 14/03/2023 16:49:28 0 Nessuna
Informazioni 14/03/2023 16:49:28 Microsoft-Windows-WFP 1025 Nessuna IPsec: Receive ISAKMP Packet
Informazioni 14/03/2023 16:49:28 0 Nessuna
Informazioni 14/03/2023 16:49:28 Microsoft-Windows-WFP 1024 Nessuna IPsec: Send ISAKMP Packet
Informazioni 14/03/2023 16:49:28 0 Nessuna
Informazioni 14/03/2023 16:49:28 Microsoft-Windows-WFP 1023 Nessuna IPsec: Negotiation Request Initiated
Informazioni 14/03/2023 16:49:28 0 Nessuna

.....
   
March 14, 2023, 05:06:57 PM #10
Could you post the details of the entries ...
March 14, 2023, 05:30:02 PM #11 Last Edit: March 16, 2023, 07:51:52 AM by lirees
thanks


Code Select

Nome registro:
Origine:       Microsoft-Windows-WFP
Data:          14/03/2023 16:49:28
ID evento:     1013
Categoria attività:Nessuna
Livello:       Informazioni
Parole chiave: (137438953472)
Utente:        N/D
Computer:      PC
Descrizione:
IPsec: Main Mode SA Terminated
XML evento:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
  <System>
    <Provider Name="Microsoft-Windows-WFP" Guid="{0c478c5b-0351-41b1-8c58-4a6737da32e3}" />
    <EventID>1013</EventID>
    <Version>1</Version>
    <Level>4</Level>
    <Task>0</Task>
    <Opcode>0</Opcode>
    <Keywords>0x8000002000000000</Keywords>
    <TimeCreated SystemTime="2023-03-14T15:49:28.8252335Z" />
    <EventRecordID>24</EventRecordID>
    <Correlation />
    <Execution ProcessID="3968" ThreadID="16648" />
    <Channel>
    </Channel>
    <Computer>PC</Computer>
    <Security />
  </System>
  <EventData>
    <Data Name="MainModeLocalAddressLength">16</Data>
    <Data Name="MainModeLocalAddress">02000000AC140A020000000000000000</Data>
    <Data Name="MainModePeerAddressLength">16</Data>
    <Data Name="MainModePeerAddress">0200000002271F7C0000000000000000</Data>
    <Data Name="KeyingModule">2</Data>
    <Data Name="SaLuid">10</Data>
    <Data Name="ICookie">16589922534102917378</Data>
    <Data Name="RCookie">13349597362303481189</Data>
  </EventData>
</Event>

Nome registro:
Origine:       Microsoft-Windows-WFP
Data:          14/03/2023 16:49:28
ID evento:     1026
Categoria attività:Nessuna
Livello:       Informazioni
Parole chiave: (549755813888)
Utente:        N/D
Computer:      PC
Descrizione:
WFP: User Mode Error
XML evento:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
  <System>
    <Provider Name="Microsoft-Windows-WFP" Guid="{0c478c5b-0351-41b1-8c58-4a6737da32e3}" />
    <EventID>1026</EventID>
    <Version>0</Version>
    <Level>4</Level>
    <Task>0</Task>
    <Opcode>0</Opcode>
    <Keywords>0x1000008000000000</Keywords>
    <TimeCreated SystemTime="2023-03-14T15:49:28.8251107Z" />
    <EventRecordID>22</EventRecordID>
    <Correlation />
    <Execution ProcessID="3968" ThreadID="16648" />
    <Channel>
    </Channel>
    <Computer>PC</Computer>
    <Security />
  </System>
  <EventData>
    <Data Name="Function">Peer</Data>
    <Data Name="ErrorCode">13868</Data>
  </EventData>
</Event>

Nome registro:
Origine:       Microsoft-Windows-WFP
Data:          14/03/2023 16:49:28
ID evento:     1025
Categoria attività:Nessuna
Livello:       Informazioni
Parole chiave: (8589934592)
Utente:        N/D
Computer:      PC
Descrizione:
IPsec: Receive ISAKMP Packet
XML evento:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
  <System>
    <Provider Name="Microsoft-Windows-WFP" Guid="{0c478c5b-0351-41b1-8c58-4a6737da32e3}" />
    <EventID>1025</EventID>
    <Version>0</Version>
    <Level>4</Level>
    <Task>0</Task>
    <Opcode>0</Opcode>
    <Keywords>0x1000000200000000</Keywords>
    <TimeCreated SystemTime="2023-03-14T15:49:28.8250728Z" />
    <EventRecordID>20</EventRecordID>
    <Correlation />
    <Execution ProcessID="3968" ThreadID="16648" />
    <Channel>
    </Channel>
    <Computer>PC</Computer>
    <Security />
  </System>
  <EventData>
    <Data Name="ICookie">02e173c8a53e3be6</Data>
    <Data Name="RCookie">65359762124c43b9</Data>
    <Data Name="ExchangeType">IKEv2 SA Init Mode</Data>
    <Data Name="Length">36</Data>
    <Data Name="NextPayload">NOTIFY</Data>
    <Data Name="Flags">32</Data>
    <Data Name="MessageID">0</Data>
    <Data Name="LocalAddress">172.20.10.2</Data>
    <Data Name="LocalPort">500</Data>
    <Data Name="LocalProtocol">0</Data>
    <Data Name="RemoteAddress">2.39.31.124</Data>
    <Data Name="RemotePort">500</Data>
    <Data Name="RemoteProtocol">0</Data>
    <Data Name="InterfaceLuid">19985273102270464</Data>
    <Data Name="ProfileId">1</Data>
  </EventData>
</Event>

Nome registro:
Origine:       Microsoft-Windows-WFP
Data:          14/03/2023 16:49:28
ID evento:     1024
Categoria attività:Nessuna
Livello:       Informazioni
Parole chiave: (4294967296)
Utente:        N/D
Computer:      PC
Descrizione:
IPsec: Send ISAKMP Packet
XML evento:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
  <System>
    <Provider Name="Microsoft-Windows-WFP" Guid="{0c478c5b-0351-41b1-8c58-4a6737da32e3}" />
    <EventID>1024</EventID>
    <Version>0</Version>
    <Level>4</Level>
    <Task>0</Task>
    <Opcode>0</Opcode>
    <Keywords>0x1000000100000000</Keywords>
    <TimeCreated SystemTime="2023-03-14T15:49:28.7694548Z" />
    <EventRecordID>18</EventRecordID>
    <Correlation />
    <Execution ProcessID="3968" ThreadID="16648" />
    <Channel>
    </Channel>
    <Computer>PC</Computer>
    <Security />
  </System>
  <EventData>
    <Data Name="ICookie">02e173c8a53e3be6</Data>
    <Data Name="RCookie">0000000000000000</Data>
    <Data Name="ExchangeType">IKEv2 SA Init Mode</Data>
    <Data Name="Length">544</Data>
    <Data Name="NextPayload">SA</Data>
    <Data Name="Flags">8</Data>
    <Data Name="MessageID">0</Data>
    <Data Name="LocalAddress">172.20.10.2</Data>
    <Data Name="LocalPort">500</Data>
    <Data Name="LocalProtocol">0</Data>
    <Data Name="RemoteAddress">2.39.31.124</Data>
    <Data Name="RemotePort">500</Data>
    <Data Name="RemoteProtocol">0</Data>
    <Data Name="InterfaceLuid">19985273102270464</Data>
  </EventData>
</Event>

Nome registro:
Origine:       Microsoft-Windows-WFP
Data:          14/03/2023 16:49:28
ID evento:     1023
Categoria attività:Nessuna
Livello:       Informazioni
Parole chiave: (4294967296)
Utente:        N/D
Computer:      PC
Descrizione:
IPsec: Negotiation Request Initiated
XML evento:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
  <System>
    <Provider Name="Microsoft-Windows-WFP" Guid="{0c478c5b-0351-41b1-8c58-4a6737da32e3}" />
    <EventID>1023</EventID>
    <Version>0</Version>
    <Level>4</Level>
    <Task>0</Task>
    <Opcode>0</Opcode>
    <Keywords>0x1000000100000000</Keywords>
    <TimeCreated SystemTime="2023-03-14T15:49:28.7611708Z" />
    <EventRecordID>16</EventRecordID>
    <Correlation />
    <Execution ProcessID="3968" ThreadID="14960" />
    <Channel>
    </Channel>
    <Computer>PC</Computer>
    <Security />
  </System>
  <EventData>
    <Data Name="KeyingModule">IKEv2</Data>
    <Data Name="AcquireContext">31</Data>
    <Data Name="LocalAddressLength">16</Data>
    <Data Name="LocalAddress">02000000AC140A020000000000000000</Data>
    <Data Name="RemoteAddressLength">16</Data>
    <Data Name="RemoteAddress">0200000002271F7C0000000000000000</Data>
    <Data Name="Mode">Tunnel Mode</Data>
    <Data Name="FilterId">9223372036854789942</Data>
    <Data Name="IPProtocol">0</Data>
    <Data Name="InterfaceLuid">19985273102270464</Data>
    <Data Name="ProfileId">0</Data>
    <Data Name="LocalUdpEncapPort">0</Data>
    <Data Name="RemoteUdpEncapPort">0</Data>
    <Data Name="MMTargetName">vpn.vmforbusiness.com</Data>
    <Data Name="EMTargetName">NULL</Data>
    <Data Name="NumTokens">0</Data>
    <Data Name="Token1Type">NULL</Data>
    <Data Name="Token1Principal">NULL</Data>
    <Data Name="Token1Mode">NULL</Data>
    <Data Name="Token1">0</Data>
    <Data Name="Token2Type">NULL</Data>
    <Data Name="Token2Principal">NULL</Data>
    <Data Name="Token2Mode">NULL</Data>
    <Data Name="Token2">0</Data>
    <Data Name="Token3Type">NULL</Data>
    <Data Name="Token3Principal">NULL</Data>
    <Data Name="Token3Mode">NULL</Data>
    <Data Name="Token3">0</Data>
    <Data Name="Token4Type">NULL</Data>
    <Data Name="Token4Principal">NULL</Data>
    <Data Name="Token4Mode">NULL</Data>
    <Data Name="Token4">0</Data>
    <Data Name="VirtualIfTunnelId">8</Data>
    <Data Name="TrafficSelectorId">1</Data>
    <Data Name="Flags">24</Data>
    <Data Name="RekeySPI">0</Data>
    <Data Name="OrigVirtualIfTunnelId">0</Data>
    <Data Name="PacketLocalAddressLength">0</Data>
    <Data Name="PacketLocalAddress">
    </Data>
    <Data Name="PacketRemoteAddressLength">0</Data>
    <Data Name="PacketRemoteAddress">
    </Data>
    <Data Name="PacketIPProtocol">0</Data>
    <Data Name="PacketInterfaceLuid">0</Data>
    <Data Name="PacketProfileId">0</Data>
  </EventData>
</Event>
March 14, 2023, 06:10:11 PM #12
Could you please post "Signature Algorithm" and "X509v3 extensions" ( System -> Trust -> Certificates ) of your server certificate.
And you ipsec.log beggining with "received packet: from "


March 15, 2023, 06:26:43 AM #13 Last Edit: March 16, 2023, 07:52:11 AM by lirees
Signature Algorithm: sha256WithRSAEncryption

Code Select
2023-03-15T06:24:39 Informational charon 05[NET] sending packet: from 192.168.10.200[500] to 93.66.66.180[8899] (36 bytes)
2023-03-15T06:24:39 Informational charon 05[ENC] generating IKE_SA_INIT response 0 [ N(NO_PROP) ]
2023-03-15T06:24:39 Informational charon 05[IKE] no IKE config found for 192.168.10.200...93.66.66.180, sending NO_PROPOSAL_CHOSEN
2023-03-15T06:24:39 Informational charon 05[ENC] parsed IKE_SA_INIT request 0 [ SA KE No N(FRAG_SUP) N(NATD_S_IP) N(NATD_D_IP) V V V V ]
2023-03-15T06:24:39 Informational charon 05[NET] received packet: from 93.66.66.180[8899] to 192.168.10.200[500] (544 bytes)


thanks

March 15, 2023, 02:30:58 PM #14
Can you do a tcpdump on the console ?

tcpdump -vvni <wan interface> host 192.168.10.200 and host 93.66.66.180
Print
Go Up Pages1 2 3
User actions