Support
Joined: 09 Oct 2002
Posts: 175
Location: Lausanne, Switzerland
|
 Posted: Tue Jan 14, 03 11:44 Post subject: How do I troubleshoot an encrypted connection? |
 |
|
The first thing to do is to verify if basic Ethernet connectivity is possible.
- Turn off IPSec and test connection.
The first thing to test is basic network connectivity. You must be sure that your packets can arrive in an unencrypted state to their destination before you can attempt to encrypt them (routing, NAT, filtering...)
- Verify IPSec parameters are matching for IKE, SA, preshared keys (value and IDs)
- Verify IP addresses are assigned correctly for endpoints and protected subnets
- If using NAT with SecureWall, verify the UDP port 500 can reach the MultiCom Firewall
- If using filtering, be sure that you have not filtered use of UDP port 500 and the ESP or AH protocol for encrypted data entering the MultiCom Firewall
- Verify that other encrypted connections are not using the same IP addresses or subnets
- Try the connections without IPSec options such as compression, Path Maximum Transfer Unit, Perfect Forward Secrecy
|
|
FAQ
Search
Memberlist
Usergroups
Register
Profile
Log in to check your private messages
Log in
