D-Link Forums

The Graveyard - Products No Longer Supported => D-Link NetDefend Firewalls => Topic started by: Syl on March 12, 2009, 07:54:37 AM

Title: IPsec remote peer ID problem; DFL-210
Post by: Syl on March 12, 2009, 07:54:37 AM

Hi,
I have a DFL-210 and I'm trying to create an IPsec tunnel. These are the details:

LocalNet: 192.168.4.5

RemoteNet: 172.22.16.118-172.22.16.124

LocalPeer: 86.x.y.178

RemotePeer: 212.a.b.120

Phase 1 seems to be OK. But somehow, RemotePeer's ID (10.m.n.34) is different than RemotePeer (212.a.b.120).

(http://www.silviancretu.ro/ipsec.png)

This makes phase 2 impossible to work.

Do you have any suggestions ? Thanks !

Title: Re: IPsec remote peer ID problem; DFL-210
Post by: Fatman on March 13, 2009, 08:12:21 AM

Well I don't se any 10. series IPs in your scheme anywhere, do you have any clue where a number in that network may be coming from?

What is the remote peer?

Your local net is a single machine?

Title: Re: IPsec remote peer ID problem; DFL-210
Post by: Syl on March 13, 2009, 08:28:14 AM

I solved it!
At Interfaces > IPsec I clicked on that IPsec tunnel. I switched to the tab "IKE Settings" and at "Security Association" I selected "Per Host" !

Thank you !