Question

Hello all,

I should realize an IPsec VPN connection between a Fritz!Box7590 and a RUT2400 FW 1.14.1 for a customer. Unfortunately without success so far. The VPN connection to the Fritz!Box works correctly with an IPAD or when RUT2400 is connected to the IPAD without IPsec and the VPN client is running on it. Therefore, the problem must be in the settings of the RUT2400.
I have now tested many settings, unfortunately always the same. RUT2400 tries to connect to Fritzbox, but then aborts after the second attempt. Also i have checked the Post from Dec 15, 2020

I am using this IPsec settings:

Enable yes

Enable IPv6 no

Authentification type Pre-shared key

IKE version IKEv1 Mode Main

Use additional xauth authentification no

Type Tunnel

Local IP address/Subnet mask 192.168.1.0/24

Remote IP address/Subnet mask empty

On startup Start

My identifier  IPsex ID / Groupname

Left firewall

Force encapsulation

Dead Peer Detection

Passthrough networks None

Remote VPN endpoint  Serveradress.myfritz.net

Remote identifier  empty

Right firewall

Allow WebUI access

Compatibility mode

Custom options

Phase1 :  3DES  SHA1 MODP1024    Phase 2 3DES SHA1 MODP1024

Here the Logs from the sytem logfile:

Fri Dec 10 13:06:04 2021 daemon.info ipsec: 08[IKE] initiating Main Mode IKE_SA FritzBox[1] to xxx.xxx.xxx
Fri Dec 10 13:06:04 2021 daemon.info ipsec: 08[ENC] generating ID_PROT request 0 [ SA V V V V V ]
Fri Dec 10 13:06:04 2021 daemon.info ipsec: 08[NET] sending packet: from xxx.xxx.xxx[500] to xxx.xxx.xxx[500] (212 bytes)
Fri Dec 10 13:06:08 2021 daemon.info ipsec: 05[IKE] sending retransmit 1 of request message ID 0, seq 1
Fri Dec 10 13:06:08 2021 daemon.info ipsec: 05[NET] sending packet: from xxx.xxx.xxx[500] to xxx.xxx.xxx[500] (212 bytes)
Fri Dec 10 13:06:15 2021 daemon.info ipsec: 07[IKE] sending retransmit 2 of request message ID 0, seq 1
Fri Dec 10 13:06:15 2021 daemon.info ipsec: 07[NET] sending packet: from xxx.xxx.xxx[500] to xxx.xxx.xxx[500] (212 bytes)
Fri Dec 10 13:06:28 2021 daemon.info ipsec: 11[IKE] giving up after 2 retransmits
Fri Dec 10 13:06:28 2021 daemon.info ipsec: 11[IKE] peer not responding, trying again (51/0)
Fri Dec 10 13:06:28 2021 daemon.info ipsec: 11[IKE] initiating Main Mode IKE_SA FritzBox[1] to xxx.xxx.xxx
Fri Dec 10 13:06:28 2021 daemon.info ipsec: 11[ENC] generating ID_PROT request 0 [ SA V V V V V ]
Fri Dec 10 13:06:28 2021 daemon.info ipsec: 11[NET] sending packet: from xxx.xxx.xxx[500] to xxx.xxx.xxx[500] (212 bytes)
Fri Dec 10 13:06:32 2021 daemon.info ipsec: 12[IKE] sending retransmit 1 of request message ID 0, seq 1
Fri Dec 10 13:06:32 2021 daemon.info ipsec: 12[NET] sending packet: from xxx.xxx.xxx[500] to xxx.xxx.xxx[500] (212 bytes)
Fri Dec 10 13:06:40 2021 daemon.info ipsec: 13[IKE] sending retransmit 2 of request message ID 0, seq 1
Fri Dec 10 13:06:40 2021 daemon.info ipsec: 13[NET] sending packet: from xxx.xxx.xxx[500] to xxx.xxx.xxx[500] (212 bytes)
Fri Dec 10 13:06:53 2021 daemon.info ipsec: 16[IKE] giving up after 2 retransmits
Fri Dec 10 13:06:53 2021 daemon.info ipsec: 16[IKE] peer not responding, trying again (52/0)

Has someone already realized an IPsec connection to Fritz!Box and could send me the settings.

Thanks for your support!

Walter

Comments

does nobody have an idea?

Answer 1

Hello, Walter!

Could you please provide configuration from Fritz!Box side?

Thank you in advance!

Best regards, Aliaksandr!

Comments

Hi Aliaksandr, here the Fritzbox - settings

VPN-Typ:

"IPSec" oder "IPSec Xauth PSK"

Name / Beschreibung:

Individueller Name für die Verbindung

Serveradresse / Server:  uapz***********8k3.myfritz.net

IPSec-ID / Gruppenname:                              Hirsau

IPSec-Schlüssel / Shared Secret:       wW*******karGUfJJ

Nutzername / Account:                     Hirsau

Passwort:                                             ******

Best Regards

Walter