About vpn error log

Reply
Highlighted
L6 Presenter

About vpn error log

Hi,

What does "received unencrypted Notify payload(INVALID COOKIE) from IP ...to  ...  ignored "  mean ?

Thanks.

Highlighted
L4 Transporter

Probably the proposals are not matching.

Highlighted
L6 Presenter

Phase1 failing possibly due to traffic being Natted. Check your policies for any address translation between the two gateways.

Highlighted
L5 Sessionator

Hi,


I  searched for the error on google and found the following

https://supportforums.cisco.com/thread/2059585

It seems like when the setup is not correct you get the error you mentioned.

Hope this helps.

Thank you

Numan

Highlighted
L3 Networker

This indicates mismatch with remote site.

Check proposals for IKE and IPSec. Make sure traffic is not NATed.

If you are using cisco at remote end, select DH-group 'no-pfs' for the proposal.

If tunnel is up and working, these messages may be during the negotiation.

Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the Live Community as a whole!

The Live Community thanks you for your participation!