Management, Networking, Logging and Reporting L2TP over IPsec X.509 Auth. Live Log

UTM Firewall requires membership for participation - click to join

Thread Info

State Not Answered
Locked Locked
Replies 2 replies
Subscribers 3 subscribers
Views 4947 views
Users 0 members are here

Options

Suggested

This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

L2TP over IPsec X.509 Auth. Live Log

maxco over 6 years ago

Hello,

I've the following errors in L2TP- IPsec log, and I can't find a solution.

Where do I have to set the right "ID_Information"? What to do about this "crl" message?

#270120: Peer ID is ID_FQDN: 'NB10033.my.domain.net'

#270120: crl not found

#270120: certificate status unknown

#270120: no suitable connection for peer 'NB10033.my.domain.net'

#270120: sending encrypted notification INVALID_ID_INFORMATION to 15.151.151.151:4500 (right IP)

sincerely

Max

This thread was automatically locked due to age.

0 BAlfson over 6 years ago

This might be possible with a PSK now, Max, but I haven't tried it. In 'Preshared Key Settings' on the 'Advanced' tab of IPsec, enter the IP of your "External (Address)" as the VPN ID.

I'm certain it's not possible with X509 certs.

Any luck with that?

Cheers - Bob

Sophos UTM Community Moderator
Sophos Certified Architect - UTM
Sophos Certified Engineer - XG
Gold Solution Partner since 2005

MediaSoft, Inc. USA
Cancel
Vote Up 0 Vote Down

Cancel
0 maxco over 6 years ago in reply to BAlfson

Hi Bob,

this wasn't really helpfull. I tried and killed all other IPsec tunnels!

No change in log...

Sincerely Max
Cancel
Vote Up 0 Vote Down

Cancel