NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
S2S VPN with Cisco RV340 - "ERROR: ID mismatched with subjectAltName."
We are in the process of setting up a new Cisco RV340 in a site to site with a FVS336Gv3. We are using certificates, and have generated a cert for the RV340 and have successfully set it up with a S2S...
Hi train_wreck,
It seems that you were trying to connect the NETGEAR VPN firewall to your Cisco with a site-to-site connection. As per checking on your logs that the NAT is also not detected. Is there a conflict between the LAN of the 2 routers? It also shows that the Netgear and the cisco has already seen each other as the negotiation on phase 1 is connected. You were stuck on phase 2. May you be able to check that?
Please refer on this article.
Regards,
Here are IKE & IPsec SA configs. Pretty sure everything matches....
Netgear IKENetgear IPsec SACisco IKE & SA configCisco IPSec Profile
Thank you for the attachments.
I see that you do have the same configurations for IPSec on both routers. "ID mismatch with subjectAltName" refers to your identifiers which is the local and remote certificates that you are using. May I know if your Netgear router is running on its latest firmware version?
Regards,
Latest version (April 2017, the last one you guys will make apparently).
Here are certs..... I mentioned "Cisco.site" in the previous posts, I have regenerated the Cisco's cert numerous times in testing this, and all references to it on either routers have been changed to "Cisco5.site".
NETGEAR Academy
Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology!
Join Us!
