Your version of the fw does not support key negotiation for network subnets.
This is supported in fw-1 v4.1 (don't remember which sp). Tell the other side to disable this option in his definition for your site. It's on the IKE dialog box on the bottom. Shimon -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Reginald Shorter Sent: Friday, February 22, 2002 00:11 To: [EMAIL PROTECTED] Subject: W2k and FW-1 Anyone ever seen this error? Trying to setup a VPN to VPN gateway....CP FW-1 ver. 4.0 SP5 and W2K (SP2) ISAKMP LOG PHASE 1 Completion DES/MD5/Pre shared secrets Negotiation id: xxxxxxxxxxxxxxxxxxxx ISAKMP LOG Sent Notification: invalid id information <phase2 stage1> peer may have sent an ID of type subnets, which is not supported in this version Negotiation id xxxxxxxxxxxx Reginald C. Shorter University System of Maryland Service Center Network and Systems Engineer Phone: 301.809.3198 Email: [EMAIL PROTECTED] Fax: 301.809.3130 <<Reginald Shorter.vcf>> _______________________________________________ Firewalls mailing list [EMAIL PROTECTED] http://lists.gnac.net/mailman/listinfo/firewalls
