keine Verbindung über VPN zum Server

Hallo erstmal,
das ist meine letzte Möglichkeit vorm Nervenzusammenbruch. Versuche verzweifelt eine Verbindung zu unserem Server zu bekommen. Ich nutze Watchguard Mobile User VPN 7.3 was auch auf unserem Server installiert ist. Lokal nutze ich XP Prof. Hab mal nachfolgend die Logfile von Watchguard kopiert. Evtl. kann ja jemand was daraus erkennen. Hab im Moment auch keinen Firewall installiert, da ich den in der Hoffnung das dort das Problem liegt, gleich runtergeschmissen habe. Leider wars das aber nicht. XP Firewall hab ich nicht aktiviert.

9-12: 16:03:10.187 My Connections\217.9.114.201-192.168.167.0 - RECEIVED<<< ISAKMP OAK QM *(HASH, SA, NON, ID 2x)
9-12: 16:03:10.187 Cannot match Policy Entry for received Phase 2 IDs:
9-12: 16:03:10.187 local host=IP ADDR=192.168.167.159, prot = 0 dst_port = 0
9-12: 16:03:10.187 remote host=IP ADDR=192.168.167.102, prot = 0 src_port = 0
9-12: 16:03:10.187 My Connections\217.9.114.201-192.168.167.0 - SENDING>>>> ISAKMP OAK INFO *(HASH, NOTIFY:INVALID_ID_INFO)
9-12: 16:03:10.187 NO MATCHING SECURE CONNECTION (IP ADDR=217.9.114.201) - Error validating Proxy ID
9-12: 16:03:15.140 My Connections\217.9.114.201-192.168.167.0 - Deleting IKE SA (IP ADDR=217.9.114.201)
9-12: 16:03:15.140    MY COOKIE 6a 7b c2 1 c4 ae d7 1c
9-12: 16:03:15.140    HIS COOKIE 73 46 85 d8 1a 7a 4c 4d
9-12: 16:03:15.156 My Connections\217.9.114.201-192.168.167.0 - SENDING>>>> ISAKMP OAK INFO *(HASH, DEL)
9-12: 16:03:15.156 This is a  version of Mobile User VPN.
9-12: 16:03:15.249 Filter table loaded.
9-12: 16:03:23.546
9-12: 16:03:23.546 My Connections\217.9.114.201-192.168.167.0 - Initiating IKE Phase 1 (IP ADDR=217.9.114.201)
9-12: 16:03:23.749 My Connections\217.9.114.201-192.168.167.0 - SENDING>>>> ISAKMP OAK AG (SA, KE, NON, ID, VID 6x)
9-12: 16:03:23.906 My Connections\217.9.114.201-192.168.167.0 - RECEIVED<<< ISAKMP OAK AG (SA, KE, NON, ID, HASH, VID 2x, NAT-D 2x)
9-12: 16:03:23.906 My Connections\217.9.114.201-192.168.167.0 - Peer is NAT-T draft-02 capable
9-12: 16:03:23.906 My Connections\217.9.114.201-192.168.167.0 - Peer supports Keepalive processing
9-12: 16:03:23.906 My Connections\217.9.114.201-192.168.167.0 - Keepalive processing enabled
9-12: 16:03:23.906 My Connections\217.9.114.201-192.168.167.0 - NAT is detected for Client
9-12: 16:03:23.906 My Connections\217.9.114.201-192.168.167.0 - Floating to IKE non-500 port
9-12: 16:03:23.984 My Connections\217.9.114.201-192.168.167.0 - SENDING>>>> ISAKMP OAK AG *(HASH, NAT-D 2x, NOTIFY:STATUS_REPLAY_STATUS, NOTIFY:STATUS_INITIAL_CONTACT)
9-12: 16:03:23.984 My Connections\217.9.114.201-192.168.167.0 - Established IKE SA
9-12: 16:03:23.984    MY COOKIE 65 da 1a be f1 5a 8f 3e
9-12: 16:03:23.984    HIS COOKIE 74 86 c6 d0 9e 17 a3 b6
9-12: 16:03:24.046
9-12: 16:03:24.046 My Connections\217.9.114.201-192.168.167.0 - Initiating IKE Phase 2 with Client IDs (message id: D6C1AFBC)
9-12: 16:03:24.046 My Connections\217.9.114.201-192.168.167.0 -   Initiator = IP ADDR=192.168.209.1, prot = 0 port = 0
9-12: 16:03:24.046 My Connections\217.9.114.201-192.168.167.0 -   Responder = IP SUBNET/MASK=192.168.167.103/255.255.255.255, prot = 0 port = 0
9-12: 16:03:24.046 My Connections\217.9.114.201-192.168.167.0 - SENDING>>>> ISAKMP OAK QM *(HASH, SA, NON, ID 2x)
9-12: 16:03:24.046 My Connections\217.9.114.201-192.168.167.0 - RECEIVED<<< ISAKMP OAK TRANS *(HASH, ATTR)
9-12: 16:03:24.046 My Connections\217.9.114.201-192.168.167.0 - Received DNS Address = IP ADDR=192.168.167.120
9-12: 16:03:24.046 My Connections\217.9.114.201-192.168.167.0 - Received Private IP Address = IP ADDR=192.168.167.159
9-12: 16:03:24.046 My Connections\217.9.114.201-192.168.167.0 - Abandoning IPSec SA negotiation (message id: D6C1AFBC)
9-12: 16:03:24.046 My Connections\217.9.114.201-192.168.167.0 - SENDING>>>> ISAKMP OAK TRANS *(HASH, ATTR)
9-12: 16:03:24.109 My Connections\217.9.114.201-192.168.167.0 - RECEIVED<<< ISAKMP OAK INFO *(HASH, NOTIFY:INVALID_ID_INFO)
9-12: 16:03:24.109 Bad Hash.
9-12: 16:03:24.109 My Connections\217.9.114.201-192.168.167.0 - RECEIVED<<< ISAKMP OAK QM *(HASH, SA, NON, ID 2x)
9-12: 16:03:24.109 Cannot match Policy Entry for received Phase 2 IDs:
9-12: 16:03:24.109 local host=IP ADDR=192.168.167.159, prot = 0 dst_port = 0
9-12: 16:03:24.109 remote host=IP ADDR=192.168.167.102, prot = 0 src_port = 0
9-12: 16:03:24.124 My Connections\217.9.114.201-192.168.167.0 - SENDING>>>> ISAKMP OAK INFO *(HASH, NOTIFY:INVALID_ID_INFO)
9-12: 16:03:24.124 NO MATCHING SECURE CONNECTION (IP ADDR=217.9.114.201) - Error validating Proxy ID
9-12: 16:03:24.827
9-12: 16:03:24.827 My Connections\217.9.114.201-192.168.167.0 - Initiating IKE Phase 2 with Client IDs (message id: 2B86EDEA)
9-12: 16:03:24.827 My Connections\217.9.114.201-192.168.167.0 -   Initiator = IP ADDR=192.168.167.159, prot = 0 port = 0
9-12: 16:03:24.827 My Connections\217.9.114.201-192.168.167.0 -   Responder = IP SUBNET/MASK=192.168.167.103/255.255.255.255, prot = 0 port = 0
9-12: 16:03:24.827 My Connections\217.9.114.201-192.168.167.0 - SENDING>>>> ISAKMP OAK QM *(HASH, SA, NON, ID 2x)
9-12: 16:03:24.890 My Connections\217.9.114.201-192.168.167.0 - RECEIVED<<< ISAKMP OAK INFO *(HASH, NOTIFY:INVALID_ID_INFO)
9-12: 16:03:24.890 Bad Hash.
9-12: 16:03:34.968 My Connections\217.9.114.201-192.168.167.0 - RECEIVED<<< ISAKMP OAK QM *(HASH, SA, NON, ID 2x)
9-12: 16:03:34.968 Cannot match Policy Entry for received Phase 2 IDs:
9-12: 16:03:34.968 local host=IP ADDR=192.168.167.159, prot = 0 dst_port = 0
9-12: 16:03:34.968 remote host=IP ADDR=192.168.167.102, prot = 0 src_port = 0
9-12: 16:03:34.968 My Connections\217.9.114.201-192.168.167.0 - SENDING>>>> ISAKMP OAK INFO *(HASH, NOTIFY:INVALID_ID_INFO)
9-12: 16:03:34.968 NO MATCHING SECURE CONNECTION (IP ADDR=217.9.114.201) - Error validating Proxy ID
9-12: 16:03:39.827 My Connections\217.9.114.201-192.168.167.0 - QM re-keying timed out. Retry count: 1
9-12: 16:03:39.827 My Connections\217.9.114.201-192.168.167.0 - SENDING>>>> ISAKMP OAK QM *(Retransmission)
9-12: 16:03:39.874 My Connections\217.9.114.201-192.168.167.0 - RECEIVED<<< ISAKMP OAK INFO *(HASH, NOTIFY:INVALID_ID_INFO)
9-12: 16:03:39.874 Bad Hash.
9-12: 16:03:44.874 My Connections\217.9.114.201-192.168.167.0 - RECEIVED<<< ISAKMP OAK QM *(HASH, SA, NON, ID 2x)
9-12: 16:03:44.874 Cannot match Policy Entry for received Phase 2 IDs:
9-12: 16:03:44.874 local host=IP ADDR=192.168.167.159, prot = 0 dst_port = 0
9-12: 16:03:44.874 remote host=IP ADDR=192.168.167.102, prot = 0 src_port = 0
9-12: 16:03:44.874 My Connections\217.9.114.201-192.168.167.0 - SENDING>>>> ISAKMP OAK INFO *(HASH, NOTIFY:INVALID_ID_INFO)
9-12: 16:03:44.874 NO MATCHING SECURE CONNECTION (IP ADDR=217.9.114.201) - Error validating Proxy ID
9-12: 16:03:54.734 My Connections\217.9.114.201-192.168.167.0 - RECEIVED<<< ISAKMP OAK QM *(HASH, SA, NON, ID 2x)
9-12: 16:03:54.734 Cannot match Policy Entry for received Phase 2 IDs:
9-12: 16:03:54.734 local host=IP ADDR=192.168.167.159, prot = 0 dst_port = 0
9-12: 16:03:54.734 remote host=IP ADDR=192.168.167.102, prot = 0 src_port = 0
9-12: 16:03:54.734 My Connections\217.9.114.201-192.168.167.0 - SENDING>>>> ISAKMP OAK INFO *(HASH, NOTIFY:INVALID_ID_INFO)
9-12: 16:03:54.734 NO MATCHING SECURE CONNECTION (IP ADDR=217.9.114.201) - Error validating Proxy ID
9-12: 16:03:54.827 My Connections\217.9.114.201-192.168.167.0 - QM re-keying timed out. Retry count: 2
9-12: 16:03:54.827 My Connections\217.9.114.201-192.168.167.0 - SENDING>>>> ISAKMP OAK QM *(Retransmission)
9-12: 16:03:54.874 My Connections\217.9.114.201-192.168.167.0 - RECEIVED<<< ISAKMP OAK INFO *(HASH, NOTIFY:INVALID_ID_INFO)
9-12: 16:03:54.874 Bad Hash.
9-12: 16:04:05.609 My Connections\217.9.114.201-192.168.167.0 - RECEIVED<<< ISAKMP OAK QM *(HASH, SA, NON, ID 2x)
9-12: 16:04:05.609 Cannot match Policy Entry for received Phase 2 IDs:
9-12: 16:04:05.609 local host=IP ADDR=192.168.167.159, prot = 0 dst_port = 0
9-12: 16:04:05.609 remote host=IP ADDR=192.168.167.102, prot = 0 src_port = 0
9-12: 16:04:05.609 My Connections\217.9.114.201-192.168.167.0 - SENDING>>>> ISAKMP OAK INFO *(HASH, NOTIFY:INVALID_ID_INFO)
9-12: 16:04:05.609 NO MATCHING SECURE CONNECTION (IP ADDR=217.9.114.201) - Error validating Proxy ID
9-12: 16:04:09.827 My Connections\217.9.114.201-192.168.167.0 - QM re-keying timed out. Retry count: 3
9-12: 16:04:09.827 My Connections\217.9.114.201-192.168.167.0 - SENDING>>>> ISAKMP OAK QM *(Retransmission)
9-12: 16:04:09.874 My Connections\217.9.114.201-192.168.167.0 - RECEIVED<<< ISAKMP OAK INFO *(HASH, NOTIFY:INVALID_ID_INFO)
9-12: 16:04:09.874 Bad Hash.
9-12: 16:04:15.406 My Connections\217.9.114.201-192.168.167.0 - RECEIVED<<< ISAKMP OAK QM *(HASH, SA, NON, ID 2x)
9-12: 16:04:15.406 Cannot match Policy Entry for received Phase 2 IDs:
9-12: 16:04:15.406 local host=IP ADDR=192.168.167.159, prot = 0 dst_port = 0
9-12: 16:04:15.406 remote host=IP ADDR=192.168.167.102, prot = 0 src_port = 0
9-12: 16:04:15.406 My Connections\217.9.114.201-192.168.167.0 - SENDING>>>> ISAKMP OAK INFO *(HASH, NOTIFY:INVALID_ID_INFO)
9-12: 16:04:15.406 NO MATCHING SECURE CONNECTION (IP ADDR=217.9.114.201) - Error validating Proxy ID
9-12: 16:04:24.827 My Connections\217.9.114.201-192.168.167.0 - Exceeded 3 re-keying attempts (message id: 2B86EDEA)
9-12: 16:04:24.827 My Connections\217.9.114.201-192.168.167.0 - Disconnecting IKE SA negotiation
9-12: 16:04:24.827 My Connections\217.9.114.201-192.168.167.0 - Deleting IKE SA (IP ADDR=217.9.114.201)
9-12: 16:04:24.827    MY COOKIE 65 da 1a be f1 5a 8f 3e
9-12: 16:04:24.827    HIS COOKIE 74 86 c6 d0 9e 17 a3 b6
9-12: 16:04:24.843 My Connections\217.9.114.201-192.168.167.0 - SENDING>>>> ISAKMP OAK INFO *(HASH, DEL)
9-12: 16:04:38.609 This is a  version of Mobile User VPN.
9-12: 16:04:38.702 Filter table loaded.

-12: 16:04:05.609 NO MATCHING SECURE CONNECTION (IP ADDR=217.9.114.201) - Error validating Proxy ID

Zum Vergrößern anklicken....

Naja... das wäre doch mal ein Ansatzpunkt.
Bist Du sicher, das die Firewall korrekt konfiguriert ist ?

Schau mal hier:



Gruß
Sven

Hallo, vielen Dank für die schnelle Reaktion.
Naja eigentlich habe ich gar keine Firewall mehr. Wie gesagt, habe ich die FW deinstalliert, in der Hoffnung der Fehler liegt daran. Da ich XP Prof ohne SP2 habe, müsste eigentlich auch keine XP FW da sein und manuell habe ich bei der Internetverbindung keine XP FW aktiviert. Im Moment bin ich im Internet ziemlich nackig.
Viele Grüße

Mommes schrieb:

Hallo, vielen Dank für die schnelle Reaktion.
Naja eigentlich habe ich gar keine Firewall mehr. Wie gesagt, habe ich die FW deinstalliert, in der Hoffnung der Fehler liegt daran. Da ich XP Prof ohne SP2 habe, müsste eigentlich auch keine XP FW da sein und manuell habe ich bei der Internetverbindung keine XP FW aktiviert. Im Moment bin ich im Internet ziemlich nackig.
Viele Grüße

Zum Vergrößern anklicken....

Nunja... auch XP ohne Servicepack hat ne Firewall
Hast Du nen Router oder gehst du direkt über deinen Rechner ins Inet ?

Gruß
Sven

Ich geh im Büro über nen Router ins Internet. Jetzt ist es aber so, dass nebenan noch ein PC steht, der den gleichen Router, das gleiche VPN Programm und das gleiche Netzwerk nutzt, aber ohne Probleme ne Verbindung bekommt. Der einzige Unterschied ist, dass auf diesem PC Win 2000 Prof läuft.
Hab kürzlich mal ein Upgrade von XP Home auf XP Prof gemacht, wobei es bei Home auch nicht funktioniert hat. Dachte es läge vielleicht an XP Home.
Läuft denn die Firewall von XP automatisch und wenn ja, wie kann ich die abstellen?