Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 38 replies
  • Answers 1 answer
  • Subscribers 5 subscribers
  • Views 107052 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Site-to-Site VPN to Windows Azure

dsidler
Hi all

Wondering if anyone successfully created a site-to-site VPN to Azure's new Virtual Network. 

Tried several options based on the Cisco and Juniper configs provided by MSFT, but to no avail. Usually stuck with a "no connection has been authorized with policy=PSK" message.

Running 8.3 on a UTM-120. 

Cheers,
Dan


This thread was automatically locked due to age.
Parents
  • 0
    Hi, Dan and corehealth, and welcome to the User BB!

    Sebastian, try with:

    IKE Settings: AES 128 / SHA1 / Group 2: MODP 1024 Lifetime: 28800 seconds
    IPSec Settings: AES 128 / SHA1 / Group 2: MODP 1024 Lifetime: 3600 seconds



    Did that work?

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply
  • 0
    Hi, Dan and corehealth, and welcome to the User BB!

    Sebastian, try with:

    IKE Settings: AES 128 / SHA1 / Group 2: MODP 1024 Lifetime: 28800 seconds
    IPSec Settings: AES 128 / SHA1 / Group 2: MODP 1024 Lifetime: 3600 seconds



    Did that work?

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children
  • 0 in reply to BAlfson
    I believe I have everything set up as described.  This is the message that seems relavent in the log:

    2012:07:10-09:39:32 astaro-1 pluto[7667]: "S_for VPN Users"[360] [AzureGatewayIP]:1024 #1133: next payload type of ISAKMP Identification Payload has an unknown value: 73
     
    2012:07:10-09:39:32 astaro-1 pluto[7667]: "S_for VPN Users"[360] [AzureGatewayIP]:1024 #1133: malformed payload in packet. Probable authentication failure (mismatch of preshared secrets?)
     
    2012:07:10-09:39:32 astaro-1 pluto[7667]: "S_for VPN Users"[360] [AzureGatewayIP]:1024 #1133: sending encrypted notification PAYLOAD_MALFORMED to [AzureGatewayIP]:1024
Unfiltered HTML