Добрый день.
Пытаемся настроить VPN между клиентом на MS WinXP и компьютером, расположенном за DFL-900. Настройка XP взята из вашего FAQ'a
http://www.dlink.ru/technical/faq_vpn_19.php
, а конфигурация Dfl-900 прилагается:
Версия прошивки 2.105
Activate: Checked
Local Address type: Subnet Addresses
IP Addresses: 192.168.1.0
Mask: 255.255.255.0
Remote address type: single addresses
IP address: xx.xx.xx.xx
Action
Negotiation mode: main
Encopsulation mode: tunnel
Outgoing interface: WAN1
Peers ip address: xx.xx.xx.xx
ESP algorithm: encrypt and authenticate (3DES, ND5)
Pre-shared key: 123
Phase 1
Negotiation mode: main
Pre-shared key: 123
Encryption algorithm: encrypt and authenticate (3DES, ND5)
SA Life Time: 28800 sec
Key group: DH1
Phase 2
Encopsulation: tunnel
Activate protocol: ESP
Encryption algorithm: encrypt and authenticate (3DES, ND5)
SA Life Time: 28800 sec
PFS:DH2
В логе
2006-10-11 17:34:36 INFO responde new phase 2 negotiation
2006-10-11 17:34:36 INFO Begin Identity Protection mode.
2006-10-11 17:34:36 INFO MS NT5 ISAKMPOAKLEY
2006-10-11 17:34:36 ERROR Only a single transform payload is allowed during phase 1 processing.
2006-10-11 17:34:37 ERROR DB(prop#1:trns#1):Peer(prop#1:trns#1) = MD5:SHA
2006-10-11 17:34:37 ERROR no suitable proposal found.
2006-10-11 17:34:37 ERROR Failed to get valid proposal.
2006-10-11 17:34:37 ERROR Failed to process Packet.
2006-10-11 17:34:37 INFO responde new phase 2 negotiation
2006-10-11 17:34:37 INFO Begin Identity Protection mode.
2006-10-11 17:34:37 INFO MS NT5 ISAKMPOAKLEY
2006-10-11 17:34:38 ERROR Only a single transform payload is allowed during phase 1 processing.
2006-10-11 17:34:38 ERROR DB(prop#1:trns#1):Peer(prop#1:trns#1) = MD5:SHA
2006-10-11 17:34:38 ERROR no suitable proposal found.