Hello,
I’ve been advised to try to connect my Azure NSv to my Cradlepoint using Aggressive mode.
I followed the guides on both vendors accordingly but the tunnel fails to come up with two error messages:
No VPN policy for peer gateway [PIP of Cradlepoint]
Type: SA Payload; Error: 21
I’ve looked so many times that I’m going blind - Can someone please advise what I’ve done wrong here?
I already have created an address object for the Cradlepoint Subnet I am using and I am designating the local X0 Subnet for the local network - The policy is bound to zone WAN.
Thank you
I realised that the issue was because on the Cradlepoint you have the option to select IKE V1 AND IKE V2 when using Aggressive mode - For reasons I’m perhaps not technically versed in, this doesn’t play nicely with the sonicwall.
When using a Cradlepoint and Aggressive mode - Ensure that IKEv1 is used instead.
Download new firmware. See release notes for Nsv
Side note: Aggressive mode didnt work for tz370 but worked for tz300 ver 7 was the issue not the cert.
Agressive mode is explicitly IkeV1. I would call it a bug of sorts that Cradlepoint allows you to select IkeV2 for this.
It might work out in the end when building from Cradlepoint to Cradlepoint, but when going across vendors - stick to the standards.
This isn’t the issue because it’s running the very latest.