Any VPN related issue in 5.39(ABWC.1)?

Peppino
Peppino Posts: 141  Ally Member
First Comment Friend Collector Sixth Anniversary
edited November 25 in Security

I am running an USGFLEX100W and after upgrading to 5.39(ABWC.1), my dynamic IKEv2 IPSec VPN is not working anymore. I thought it might be some configuration change, so I went back 2 months (I have weekly backups), but it still don't work. It don't work on any of the mobiles it used to, and the laptop I used to connect is giving me a similar error. This is what I see in the firewall:

[SA] : No proposal chosen
[ID] : Tunnel [IPSec] Local IP mismatch

I am using a domain name, but this is set in the certificate, and the client is also set like this. It used to work normally.

The mobile log shows this:
[ENC] parsed IKE_AUTH response 1 [ N(AUTH_FAILED) ]
[IKE] received AUTHENTICATION_FAILED notify error

Any idea what could be wrong?

All Replies

  • PeterUK
    PeterUK Posts: 3,443  Guru Member
    100 Answers 2500 Comments Friend Collector Seventh Anniversary

    Is VPN Local Policy set to IP 0.0.0.0 ? give that a go

  • Peppino
    Peppino Posts: 141  Ally Member
    First Comment Friend Collector Sixth Anniversary

    It turned out to be a faster resolution than I thought. A rookie issue apparently…

    The certificate expired on 8th of November… Interesting though, that it drops local IP mismatch.

Security Highlight