PlayBook and Cisco VPN 3005
Please Login to Remove!
I'm using pre-shared keys with no certificates. I set up a new group, IKE proposal, and SA for BlackBerry access. Here's all the settings I'm using on the 3005:
**IKE Proposal**
Proposal Name: blackberry
Authentication Mode: Preshared Keys
Authentication Algorithm: MD5/HMAC-128
Encryption Algorithm: DES-56
Diffe-Hellman Group: Group 2 (1024-bits)
Lifetime Measurement: Time
Data Lifetime 10000
Time Lifetime 86400
**Security Association**
SA Name: blackberry
Inheritance: From Rule
*IPSec Parameters*
Authentication Algorithm: ESP/MD5/HMAC-128
Encryption Algorithm: DES-56
Encapsulation Mode: Tunnel
Perfect Forward Secrecy: Disabled
Lifetime Measurement: Time
Data Lifetime 10000
Time Lifetime 28800
*IKE Parameters*
IKE Peer: 0.0.0.0
Negotiation Mode: Main
Digital Certificate: None (Use Preshared Keys)
Certificate Transmission: Identify certificate only
IKE Proposal: blackberry
I am able to successfully connect to the VPN with my Torch, but not my PlayBook. I've tried basic, advanced, and manual algorithm selection on the PB without success. After increasing the logging level in the VPN box, I can see that communication is actually happening, but it seems that the concentrator sends out a packet to the PB after group name and such is verified and it gets no response. I'm not seeing it complete phase 1. No error shows on the PB, it just says connecting, then goes back to the edit VPN profile screen almost instantly.
Any ideas?
|