Dear specialists.
I have a problem and would like to ask your help.
In my company Microsoft TMG 2010 Server is used for VPN connections with remote sites. In our company we also use dfl-210 and dfl-260e to connect this remote sites to HQ (TMG 2010). Most of remote sites have public ip address and they are connected using ipsec tunnel. At the same time some sites don't have public ip address and they are connected using PPTP. Taking into consideration the fact that PPTP is not secure We'd like to use L2TP/IPSec instead. Unfortunately we are facing problem while configuring dfl-210 or dfl-260e to connect to TMG using L2TP/IPSec. IPSec connection in transport mode can't be established on the Phase II. I see the following problem in terminal:
2012-09-07 13:10:01: IkeSnoop: Received IKE packet from 195.239.222.91:500
Exchange type : Informational
ISAKMP Version : 1.0
Flags : E (encryption)
Cookies : 0x1f5af242f7c5bc7c -> 0xbcfb8f851f979637
Message ID : 0xe30a85d9
Packet length : 68 bytes
# payloads : 2
Payloads:
HASH (Hash)
Payload data length : 20 bytes
N (Notification)
Payload data length : 12 bytes
Protocol ID : ESP
Notification : Invalid ID information
First question: If dfl-210 or dfl-260e can connect to TMG 2010 using l2tp/ipsec
Second question: Please let me know what does this error mean to I can understand what the problem is.
Third question: Could you give me reference to the document where the process of configuration of dfl-210 or dfl-260e to connect using l2tp/ipsec is described.
Thanks in advance for your help.
Author
Topic: DFL-260E L2TP/IPSec client (Read 10303 times)