This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Connect AP150W to thrid-Party IPSec-Gateway

Connect AP150W to thrid-Party IPSec-Gateway

Go to solution
Marco_Lorenz
New Contributor II

‎10-12-2020 09:10 AM

Hi Heroes,

has anyone already managed to connect an AP150W to a third-Party Firewall with IPSec? I always get the error “Aggressive Mode ID not matching” on conecntrator side. I tried with Watchguard and Sophos Firewalls - same error for both manufactorers.

 

KR

Marco

0 Kudos
1 ACCEPTED SOLUTION

Go to solution
AlexN
Extreme Employee

‎04-09-2021 04:14 PM

Folks,

 

trouble with IQEngine-based gear (cloud APs and XRs) is that they use IPSEC implementation that is just old. It only supports IKEv1 and is somewhat rigid with attributes etc.
There is work underway to upgrade IPSEC to modern standards, at which point you will be able to terminate tunnels on any decent GW, for instance XCC or VOSS FIGW, if that matters

Best regards/Un saludo
Alex

View solution in original post

0 Kudos
5 REPLIES 5

Go to solution
Miguel-Angel_RO
Valued Contributor II

‎10-29-2020 08:56 AM

Marco,

 

I never tried this but the error messages seems to indicate an issue in the IPSec phase1.

Try to disable the “aggressive mode”.

Mig

0 Kudos
GTM-P2G8KFN