[vpn-help] Shrew soft VPN client configuration for juniper SSG
Matthew Grooms
mgrooms at shrew.net
Fri Oct 1 13:15:53 CDT 2010
On 9/29/2010 5:30 AM, Zigmunds Vītiņš wrote:
>
>
> Hello,
>
> at this moment all clients successfully can use NetscreenRemote, but on
> one pc are windows7 and for this pc, I plan to use ShrewSoft VPN client.
>
Looks like you have the PFS DH group set to 5 on your Netscreen and PFS
set to group 2 on the Shrew Soft client. That could cause an issue. My
guess is that if you look at the VPN Trace debug log output, the client
is trying to negotiation a phase2 IPsec SA, but its being rejected by
the gateway.
http://www.shrew.net/support/wiki/BugReportVpnWindows
-Matthew
More information about the vpn-help
mailing list