NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
Fvx538
I have a FVX538 which was shelved for many years because we had a new FW from the provider. However we switched providers and I had to pull it off the shelf to use. I updated the firmware successfully...
I started from scratch and actually got what you see below. After a few tries it gave up the connection. Every thing was exactly how it was in the manual except for a few things like the key and the remote/local identifiers. I did some searching for info on these errors but couldn't figure it out.
Client Log
VPNCONF] TGBIKE_STARTED received
20150609 21:47:21 Reading configuration...
20150609 21:47:21 IKEv1 configuration detected
20150609 21:47:21 No IKEv2 configuration
20150609 21:47:21 No SSL configuration
20150609 21:47:59:180 Default (SA Ikev1Gateway-P1) SEND phase 1 Aggressive Mode [SA] [KEY_EXCH] [NONCE] [ID] [VID] [VID] [VID] [VID] [VID]
20150609 21:47:59:751 Default (SA Ikev1Gateway-P1) RECV phase 1 Aggressive Mode [HASH] [SA] [KEY_EXCH] [NONCE] [ID] [NAT_D] [NAT_D] [VID] [VID] [VID]
20150609 21:47:59:766 Default (SA Ikev1Gateway-P1) SEND phase 1 Aggressive Mode [HASH] [NAT_D] [NAT_D]
20150609 21:47:59:768 Default phase 1 done: initiator id remote.com, responder id local.com
20150609 21:47:59:770 Default (SA Ikev1Gateway-Ikev1Tunnel-P2) SEND phase 2 Quick Mode [HASH] [SA] [NONCE] [ID] [ID]
20150609 21:48:04:764 Default (SA Ikev1Gateway-Ikev1Tunnel-P2) SEND phase 2 Quick Mode [HASH] [SA] [NONCE] [ID] [ID]
20150609 21:48:09:800 Default (SA Ikev1Gateway-P1) SEND phase 1 Aggressive Mode [HASH] [NAT_D] [NAT_D]
20150609 21:48:09:801 Default (SA Ikev1Gateway-Ikev1Tunnel-P2) SEND phase 2 Quick Mode [HASH] [SA] [NONCE] [ID] [ID]
20150609 21:48:19:800 Default (SA Ikev1Gateway-Ikev1Tunnel-P2) SEND phase 2 Quick Mode [HASH] [SA] [NONCE] [ID] [ID]
20150609 21:48:19:842 Default (SA Ikev1Gateway-P1) SEND phase 1 Aggressive Mode [HASH] [NAT_D] [NAT_D]
20150609 21:48:24:866 Default (SA Ikev1Gateway-Ikev1Tunnel-P2) SEND phase 2 Quick Mode [HASH] [SA] [NONCE] [ID] [ID]
20150609 21:48:29:897 Default (SA Ikev1Gateway-P1) SEND phase 1 Aggressive Mode [HASH] [NAT_D] [NAT_D]
20150609 21:48:29:897 Default (SA Ikev1Gateway-Ikev1Tunnel-P2) SEND phase 2 Quick Mode [HASH] [SA] [NONCE] [ID] [ID]
20150609 21:48:29:897 Default transport_send_messages: giving up on message 02216138
20150609 21:48:30:913 Default (SA Ikev1Gateway-P1) SEND Informational [HASH] [DELETE]
20150609 21:48:30:913 Default deleted
FW LOG
2015 Jun 9 21:56:43 [FVX538] [IKE] Remote configuration for identifier "remote.com" found_
2015 Jun 9 21:56:43 [FVX538] [IKE] Received request for new phase 1 negotiation: x.x.x.x[500]<=>x.x.x.x[500]_
2015 Jun 9 21:56:43 [FVX538] [IKE] Beginning Aggressive mode._
2015 Jun 9 21:56:43 [FVX538] [IKE] Received unknown Vendor ID_
2015 Jun 9 21:56:43 [FVX538] [IKE] Received Vendor ID: draft-ietf-ipsec-nat-t-ike-02__
2015 Jun 9 21:56:43 [FVX538] [IKE] Received unknown Vendor ID_
2015 Jun 9 21:56:43 [FVX538] [IKE] For x.x.x.x[500], Selected NAT-T version: draft-ietf-ipsec-nat-t-ike-02_
2015 Jun 9 21:56:43 [FVX538] [IKE] Floating ports for NAT-T with peer x.x.x.x[4500]_
2015 Jun 9 21:56:43 [FVX538] [IKE] Received Malformed packet of payload length 52014 and total length 72._
2015 Jun 9 21:56:43 [FVX538] [IKE] Could not start quick mode as there is no valid ISAKMP-SA:
2015 Jun 9 21:56:53 [FVX538] [IKE] Received Malformed packet of payload length 5542 and total length 72._
2015 Jun 9 21:56:53 [FVX538] [IKE] Could not start quick mode as there is no valid ISAKMP-SA:
2015 Jun 9 21:57:03 [FVX538] [IKE] Received Malformed packet of payload length 5542 and total length 72._
2015 Jun 9 21:57:08 [FVX538] [IKE] Could not start quick mode as there is no valid ISAKMP-SA:
2015 Jun 9 21:57:14 [FVX538] [IKE] Received Malformed packet of payload length 5542 and total length 72._
2015 Jun 9 21:57:14 [FVX538] [IKE] Could not start quick mode as there is no valid ISAKMP-SA:
2015 Jun 9 21:57:15 [FVX538] [IKE] Ignore information because ISAKMP-SA has not been established yet._
Client Log
VPNCONF] TGBIKE_STARTED received
20150609 21:47:21 Reading configuration...
20150609 21:47:21 IKEv1 configuration detected
20150609 21:47:21 No IKEv2 configuration
20150609 21:47:21 No SSL configuration
20150609 21:47:59:180 Default (SA Ikev1Gateway-P1) SEND phase 1 Aggressive Mode [SA] [KEY_EXCH] [NONCE] [ID] [VID] [VID] [VID] [VID] [VID]
20150609 21:47:59:751 Default (SA Ikev1Gateway-P1) RECV phase 1 Aggressive Mode [HASH] [SA] [KEY_EXCH] [NONCE] [ID] [NAT_D] [NAT_D] [VID] [VID] [VID]
20150609 21:47:59:766 Default (SA Ikev1Gateway-P1) SEND phase 1 Aggressive Mode [HASH] [NAT_D] [NAT_D]
20150609 21:47:59:768 Default phase 1 done: initiator id remote.com, responder id local.com
20150609 21:47:59:770 Default (SA Ikev1Gateway-Ikev1Tunnel-P2) SEND phase 2 Quick Mode [HASH] [SA] [NONCE] [ID] [ID]
20150609 21:48:04:764 Default (SA Ikev1Gateway-Ikev1Tunnel-P2) SEND phase 2 Quick Mode [HASH] [SA] [NONCE] [ID] [ID]
20150609 21:48:09:800 Default (SA Ikev1Gateway-P1) SEND phase 1 Aggressive Mode [HASH] [NAT_D] [NAT_D]
20150609 21:48:09:801 Default (SA Ikev1Gateway-Ikev1Tunnel-P2) SEND phase 2 Quick Mode [HASH] [SA] [NONCE] [ID] [ID]
20150609 21:48:19:800 Default (SA Ikev1Gateway-Ikev1Tunnel-P2) SEND phase 2 Quick Mode [HASH] [SA] [NONCE] [ID] [ID]
20150609 21:48:19:842 Default (SA Ikev1Gateway-P1) SEND phase 1 Aggressive Mode [HASH] [NAT_D] [NAT_D]
20150609 21:48:24:866 Default (SA Ikev1Gateway-Ikev1Tunnel-P2) SEND phase 2 Quick Mode [HASH] [SA] [NONCE] [ID] [ID]
20150609 21:48:29:897 Default (SA Ikev1Gateway-P1) SEND phase 1 Aggressive Mode [HASH] [NAT_D] [NAT_D]
20150609 21:48:29:897 Default (SA Ikev1Gateway-Ikev1Tunnel-P2) SEND phase 2 Quick Mode [HASH] [SA] [NONCE] [ID] [ID]
20150609 21:48:29:897 Default transport_send_messages: giving up on message 02216138
20150609 21:48:30:913 Default (SA Ikev1Gateway-P1) SEND Informational [HASH] [DELETE]
20150609 21:48:30:913 Default
FW LOG
2015 Jun 9 21:56:43 [FVX538] [IKE] Remote configuration for identifier "remote.com" found_
2015 Jun 9 21:56:43 [FVX538] [IKE] Received request for new phase 1 negotiation: x.x.x.x[500]<=>x.x.x.x[500]_
2015 Jun 9 21:56:43 [FVX538] [IKE] Beginning Aggressive mode._
2015 Jun 9 21:56:43 [FVX538] [IKE] Received unknown Vendor ID_
2015 Jun 9 21:56:43 [FVX538] [IKE] Received Vendor ID: draft-ietf-ipsec-nat-t-ike-02__
2015 Jun 9 21:56:43 [FVX538] [IKE] Received unknown Vendor ID_
2015 Jun 9 21:56:43 [FVX538] [IKE] For x.x.x.x[500], Selected NAT-T version: draft-ietf-ipsec-nat-t-ike-02_
2015 Jun 9 21:56:43 [FVX538] [IKE] Floating ports for NAT-T with peer x.x.x.x[4500]_
2015 Jun 9 21:56:43 [FVX538] [IKE] Received Malformed packet of payload length 52014 and total length 72._
2015 Jun 9 21:56:43 [FVX538] [IKE] Could not start quick mode as there is no valid ISAKMP-SA:
2015 Jun 9 21:56:53 [FVX538] [IKE] Received Malformed packet of payload length 5542 and total length 72._
2015 Jun 9 21:56:53 [FVX538] [IKE] Could not start quick mode as there is no valid ISAKMP-SA:
2015 Jun 9 21:57:03 [FVX538] [IKE] Received Malformed packet of payload length 5542 and total length 72._
2015 Jun 9 21:57:08 [FVX538] [IKE] Could not start quick mode as there is no valid ISAKMP-SA:
2015 Jun 9 21:57:14 [FVX538] [IKE] Received Malformed packet of payload length 5542 and total length 72._
2015 Jun 9 21:57:14 [FVX538] [IKE] Could not start quick mode as there is no valid ISAKMP-SA:
2015 Jun 9 21:57:15 [FVX538] [IKE] Ignore information because ISAKMP-SA has not been established yet._
NETGEAR Academy
Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology!
Join Us!
