VPN - NO_PROPOSAL_CHOSEN

This is Interesting: Free IT Magazines  
Home > Archive > VPN > February 2005 > NO_PROPOSAL_CHOSEN





You are viewing an archived Text-only version of the thread. To view this thread in it's original format and/or if you want to reply to this thread please [click here]

Author NO_PROPOSAL_CHOSEN
Christopher Glaeser

2005-01-29, 2:45 am

Trying to connect two Netgear FVS328 VPN routers. What does the log message
NO_PROPOSAL_CHOSEN mean? The VPN Status is Phase 1: M-ESTABLISHED / Phase
2: IDLE. They are trying to connect, but do not quite complete the
connection. Any suggestions?

Best,
Christopher


Mike Drechsler - SPAM PROTECTED EMAIL

2005-01-30, 8:45 pm

Christopher Glaeser wrote:
> Trying to connect two Netgear FVS328 VPN routers. What does the log message
> NO_PROPOSAL_CHOSEN mean? The VPN Status is Phase 1: M-ESTABLISHED / Phase
> 2: IDLE. They are trying to connect, but do not quite complete the
> connection. Any suggestions?
>
> Best,
> Christopher
>
>


It means that the phase 2 settings do not match properly between the two
routers. So your subnet definitions may be wrong. Perhaps you put the
local address in the remote address field or something like that.

Things you normally see as part of phase 2 settings:
encapsulation type, ESP encryption transform, ESP authentication
transform, perfect forward secrecy, local and remote ip settings. Don't
worry about key lifetime settings for now, they will not cause a phase 2
failure yet.


--
WARNING! Email address has been altered for spam resistance.
Please remove the -deletethispart-. section before replying directly.
Mike Drechsler (mike-newsgroup@-deletethispart-.upcraft.com)
Christopher Glaeser

2005-01-31, 2:45 am

> It means that the phase 2 settings do not match properly between the two
> routers. So your subnet definitions may be wrong. Perhaps you put the
> local address in the remote address field or something like that.

Thanks for the quick response. I'll check all settings. What is strange is
that the routers will connect about 1 in 20 attempts. Not sure why it works
once in a while, but most attempts fail.

Best,
Christopher


mitchelljones@riksa.com

2005-02-08, 7:45 am


m@nospam.com wrote:
> Thanks for the quick response. I'll check all settings. What is strange is
> that the routers will connect about 1 in 20 attempts. Not sure why it works
> once in a while, but most attempts fail.
> Best,
> Christopher

Thank you

mitchell_jones@riksa.com

Sponsored Links






Free braindumps | Software forum | Database administration forum

Copyright 2003 - 2008 webservertalk.com