I have two 2008 R2 server behind routers will all ports mapped on the external firewall which i'm trying to connect via IPSEC.
Network 1Network 2
Local 10.64.240.13- FirewallInternetFirewall - Local 192.168.150.25
I have configured the local ends points, external IPs, created firewall rule and connection rules.
I see Main Mode P1 connection but never Quick Mode for P2 data. Computer authenticate using PSK, I assume the P2 should use the default methods available in firewall settings. Machines are in different domains.
I've applied hotfix for NAT and also registry keys i've come across but Quick Mode won't connect.
Pings for example now request time out so i'm sure each end is capturing the traffic and the event logs show Filtering Platform Connection audit success.
No ideas what left to check unless something getting blocked on the forwarding firewalls?
I get this now -
Local Endpoint:Network Address:192.168.150.25
Network Address mask:0.0.0.0
Port:0
Tunnel Endpoint:192.168.150.25
Remote Endpoint:
Network Address:10.64.240.13
Address Mask: 0.0.0.0
Port:0
Tunnel Endpoint:x.x.x.x (remote public IP)
Private Address:0.0.0.0
Additional Information:
Protocol: 0
Keying Module Name:IKEv1
Virtual Interface Tunnel ID:0
Traffic Selector ID:0
Mode:Tunnel
Role:Initiator
Quick Mode Filter ID:166257
Main Mode SA ID:17
Failure Information:
State: Sent first (SA) payload
Message ID: 34
Failure Point:Remote computer
Failure Reason:Invalid situation