1 00:00:00,300 --> 00:00:03,240 Hello and welcome to troubleshooting scenario number three. 2 00:00:03,780 --> 00:00:11,540 So now let's bring the configuration for phase number two in the knee in the Isaac camp negotiation. 3 00:00:11,790 --> 00:00:17,240 So let's say edit and we will go to advanced settings and for phase two. 4 00:00:17,370 --> 00:00:26,100 Let's say that again we want to have something strong so a yes advanced encryption with Shar and just 5 00:00:26,100 --> 00:00:29,560 click apply and close 6 00:00:32,830 --> 00:00:34,080 let's say here. 7 00:00:34,140 --> 00:00:49,750 So diagnose debug application like minus 1 And now let's go and say connect and let's wait for the logs 8 00:00:49,970 --> 00:00:52,630 to to appear and see how they look. 9 00:00:58,010 --> 00:00:59,370 Both still connecting 10 00:01:08,840 --> 00:01:10,280 logs generated. 11 00:01:10,280 --> 00:01:14,600 Now let's say diagnose B bug disable 12 00:01:17,780 --> 00:01:18,880 VPN connection fail. 13 00:01:18,890 --> 00:01:20,950 Please check your configuration and so on. 14 00:01:20,960 --> 00:01:27,870 Good let's now go through ladybugs. 15 00:01:40,950 --> 00:01:44,810 So we started their we'll do it again. 16 00:01:45,030 --> 00:01:45,790 Mm hmm mm hmm. 17 00:01:56,480 --> 00:02:02,470 Now take everything here in a notepad so that I'm sure nothing will change. 18 00:02:03,770 --> 00:02:09,050 No logs will just mess up our our investigation. 19 00:02:09,070 --> 00:02:09,370 Good. 20 00:02:10,300 --> 00:02:12,450 So let's go through the logs. 21 00:02:14,570 --> 00:02:16,310 So I want aggressive. 22 00:02:16,310 --> 00:02:17,080 It's coming. 23 00:02:17,080 --> 00:02:20,760 The uh the package is coming from this IP UDP. 24 00:02:20,770 --> 00:02:21,530 Five hundred. 25 00:02:21,530 --> 00:02:23,340 Coming to us. 26 00:02:23,450 --> 00:02:24,860 Negotiation result. 27 00:02:25,070 --> 00:02:26,390 Let's say good. 28 00:02:26,390 --> 00:02:31,220 So essay proposal children match the gateway remote access VPN for. 29 00:02:31,550 --> 00:02:34,290 Which means that Phase 1. 30 00:02:34,550 --> 00:02:35,480 It's good. 31 00:02:35,480 --> 00:02:39,580 Now in order for everything to work we have to have authentication. 32 00:02:39,590 --> 00:02:40,150 Okay. 33 00:02:40,160 --> 00:02:42,320 And also Phase Two. 34 00:02:42,320 --> 00:02:45,410 So let's continue with investigation. 35 00:02:45,500 --> 00:02:50,660 Here is the authentication so appreciate key authentication succeeded and authentication is OK. 36 00:02:51,290 --> 00:02:54,970 So at this point we know that Phase 1 and notification is fine. 37 00:02:55,430 --> 00:02:58,820 But we should see some problems with Phase 2. 38 00:02:58,940 --> 00:03:03,710 So let's search for everything that relates to Phase 2 negotiation 39 00:03:06,540 --> 00:03:09,040 and nothing here. 40 00:03:11,160 --> 00:03:14,590 Here OK. 41 00:03:14,590 --> 00:03:16,890 Pure proposal is this is the pier. 42 00:03:16,900 --> 00:03:27,360 This is our IP address on the remote the remote worker matched face to we see some some parameters here. 43 00:03:27,370 --> 00:03:32,560 As for as for the Phase 2 proposal. 44 00:03:32,720 --> 00:03:34,460 So this is what's coming. 45 00:03:34,580 --> 00:03:38,110 And this is this is our proposals available and this is what's coming. 46 00:03:38,110 --> 00:03:51,260 So incoming proposal and we see here ESB A is CBC so which means this is a 256 and Sha 5 1 2 which we 47 00:03:51,260 --> 00:03:52,010 have changed. 48 00:03:52,070 --> 00:03:52,430 Right. 49 00:03:52,520 --> 00:03:53,770 So in the for the plan. 50 00:03:54,650 --> 00:03:55,730 And here it is. 51 00:03:55,730 --> 00:03:58,490 So negotiation failure. 52 00:03:58,490 --> 00:04:02,300 And it says that negotiate IP set as a error. 53 00:04:02,300 --> 00:04:04,090 No it's a proposal chosen. 54 00:04:04,700 --> 00:04:13,010 So I believe as compared to other other vendors here available on on the security market on the next 55 00:04:13,010 --> 00:04:19,050 generation firewalls I would say that the debug is available here on the fourth net appliances on the 56 00:04:19,070 --> 00:04:23,180 front virals are pretty good pretty self-explanatory. 57 00:04:23,420 --> 00:04:28,410 Which is not the case for fortunate as well when we're talking about side to side VPN. 58 00:04:28,790 --> 00:04:34,430 It's a different story and you can see you can see exactly how they are. 59 00:04:34,460 --> 00:04:39,230 If you check my other course dedicated to site to site VPN. 60 00:04:39,260 --> 00:04:46,880 But anyway regarding remote access VPN what we are studying now we can see that the message is self-explanatory 61 00:04:46,910 --> 00:04:48,050 and I'm glad to see that. 62 00:04:48,360 --> 00:04:57,650 So negotiation failure negotiate IP sic essay Security Association error and no essay proposal choosing. 63 00:04:57,740 --> 00:05:03,770 Meaning that what I am offering to you me the 40 client the remote worker what I am offering to you 64 00:05:03,770 --> 00:05:10,160 as a proposal for phase two is not matching what you have available and that's the reason the remote 65 00:05:10,160 --> 00:05:13,380 access VPN is not being formed. 66 00:05:13,880 --> 00:05:19,080 Let's just take a look at the rest and try to see if any other information. 67 00:05:19,100 --> 00:05:28,050 It's it's important to receive this one notify your proposal match. 68 00:05:28,050 --> 00:05:29,130 Phase 2 again. 69 00:05:29,130 --> 00:05:33,810 So he's trying several times and again negotiation failure. 70 00:05:33,810 --> 00:05:37,210 No it's a proposal chosen. 71 00:05:37,390 --> 00:05:38,830 And guess what. 72 00:05:38,980 --> 00:05:49,030 We are deleting this dynamic then having negotiation and releasing the slots to say so and that's it. 73 00:05:49,210 --> 00:05:50,950 I shrank and that's it good. 74 00:05:51,580 --> 00:05:58,750 So this is the this is the conclusion no established I'd say for exchange type information from this 75 00:05:58,750 --> 00:06:00,790 IP to this IP. 76 00:06:00,790 --> 00:06:01,660 Perfect. 77 00:06:01,690 --> 00:06:05,710 So thank you for your time and see you in my upcoming courses as well. 78 00:06:05,710 --> 00:06:06,300 Thanks a lot.