FOR TIPS, gUIDES & TUTORIALS

subscribe to our Youtube

GO TO YOUTUBE

14455 questions

17168 answers

28195 comments

0 members

We are migrating to our new platform at https://community.teltonika.lt. Moving forward, you can continue discussions on this new platform. This current platform will be temporarily maintained for reference purposes.
0 votes
414 views 2 comments
by anonymous

Hello all,

I should realize an IPsec VPN connection between a Fritz!Box7590 and a RUT2400 FW 1.14.1 for a customer. Unfortunately without success so far. The VPN connection to the Fritz!Box works correctly with an IPAD or when RUT2400 is connected to the IPAD without IPsec and the VPN client is running on it. Therefore, the problem must be in the settings of the RUT2400.
I have now tested many settings, unfortunately always the same. RUT2400 tries to connect to Fritzbox, but then aborts after the second attempt. Also i have checked the Post from Dec 15, 2020

I am using this IPsec settings:

Enable yes

Enable IPv6 no

Authentification type Pre-shared key

IKE version IKEv1 Mode Main

Use additional xauth authentification no

Type Tunnel

Local IP address/Subnet mask 192.168.1.0/24image

Remote IP address/Subnet mask empty

On startup Start

My identifier  IPsex ID / Groupname

Left firewall

Force encapsulation

Dead Peer Detection

Passthrough networks None

Remote VPN endpoint  Serveradress.myfritz.net

Remote identifier  empty

Right firewall

Allow WebUI access

Compatibility mode

Custom options

Phase1 :  3DES  SHA1 MODP1024    Phase 2 3DES SHA1 MODP1024

Here the Logs from the sytem logfile:

Fri Dec 10 13:06:04 2021 daemon.info ipsec: 08[IKE] initiating Main Mode IKE_SA FritzBox[1] to xxx.xxx.xxx
Fri Dec 10 13:06:04 2021 daemon.info ipsec: 08[ENC] generating ID_PROT request 0 [ SA V V V V V ]
Fri Dec 10 13:06:04 2021 daemon.info ipsec: 08[NET] sending packet: from xxx.xxx.xxx[500] to xxx.xxx.xxx[500] (212 bytes)
Fri Dec 10 13:06:08 2021 daemon.info ipsec: 05[IKE] sending retransmit 1 of request message ID 0, seq 1
Fri Dec 10 13:06:08 2021 daemon.info ipsec: 05[NET] sending packet: from xxx.xxx.xxx[500] to xxx.xxx.xxx[500] (212 bytes)
Fri Dec 10 13:06:15 2021 daemon.info ipsec: 07[IKE] sending retransmit 2 of request message ID 0, seq 1
Fri Dec 10 13:06:15 2021 daemon.info ipsec: 07[NET] sending packet: from xxx.xxx.xxx[500] to xxx.xxx.xxx[500] (212 bytes)
Fri Dec 10 13:06:28 2021 daemon.info ipsec: 11[IKE] giving up after 2 retransmits
Fri Dec 10 13:06:28 2021 daemon.info ipsec: 11[IKE] peer not responding, trying again (51/0)
Fri Dec 10 13:06:28 2021 daemon.info ipsec: 11[IKE] initiating Main Mode IKE_SA FritzBox[1] to xxx.xxx.xxx
Fri Dec 10 13:06:28 2021 daemon.info ipsec: 11[ENC] generating ID_PROT request 0 [ SA V V V V V ]
Fri Dec 10 13:06:28 2021 daemon.info ipsec: 11[NET] sending packet: from xxx.xxx.xxx[500] to xxx.xxx.xxx[500] (212 bytes)
Fri Dec 10 13:06:32 2021 daemon.info ipsec: 12[IKE] sending retransmit 1 of request message ID 0, seq 1
Fri Dec 10 13:06:32 2021 daemon.info ipsec: 12[NET] sending packet: from xxx.xxx.xxx[500] to xxx.xxx.xxx[500] (212 bytes)
Fri Dec 10 13:06:40 2021 daemon.info ipsec: 13[IKE] sending retransmit 2 of request message ID 0, seq 1
Fri Dec 10 13:06:40 2021 daemon.info ipsec: 13[NET] sending packet: from xxx.xxx.xxx[500] to xxx.xxx.xxx[500] (212 bytes)
Fri Dec 10 13:06:53 2021 daemon.info ipsec: 16[IKE] giving up after 2 retransmits
Fri Dec 10 13:06:53 2021 daemon.info ipsec: 16[IKE] peer not responding, trying again (52/0)

Has someone already realized an IPsec connection to Fritz!Box and could send me the settings.

Thanks for your support!

Walter

by anonymous

does nobody have an idea?

1 Answer

0 votes
by anonymous

Hello, Walter!

Could you please provide configuration from Fritz!Box side?

Thank you in advance!

Best regards, Aliaksandr!

by anonymous
Hi Aliaksandr, here the Fritzbox - settings

VPN-Typ:

"IPSec" oder "IPSec Xauth PSK"

Name / Beschreibung:

Individueller Name für die Verbindung

Serveradresse / Server:  uapz***********8k3.myfritz.net

IPSec-ID / Gruppenname:                              Hirsau

IPSec-Schlüssel / Shared Secret:       wW*******karGUfJJ

Nutzername / Account:                     Hirsau

Passwort:                                             ******

Best Regards

Walter