L2TP/IPSec VPN from Android 8.0

Security Gateway Discussions
Post Reply
twproject
Posts: 3
Joined: 26 Jun 2009, 10:27

L2TP/IPSec VPN from Android 8.0

Post by twproject » 05 Jun 2018, 11:29

Hi all,
after setting up l2tp/ipsec from windows 10, i'm trying to use the same tunnel from mobile phone but i have the error "no proposal chosen"

looking with ikesnoop i set modp 1024 (and 2048 too) and try to change ike and ipsec algs with sha1/256/512 and 3DES/AES but the issue remain.

Hints?

Code: Select all

2018-06-05 11:25:08: IkeSnoop: core:fw_pub_ip:500 <- eolo:5.90.200.237:49652
Exchange type  : Identity Protection (main mode)
ISAKMP Version : 1.0
Flags          :
Cookies        : 0x55d41a874f052343 -> 0x0000000000000000
Message ID     : 0x00000000
Packet length  : 724 bytes
# payloads     : 7
Payloads:
  SA (Security Association)
    Payload data length : 568 bytes
    DOI : 1 (IPsec DOI)
      Proposal 1/1
        Protocol 1/1
          Protocol ID                : ISAKMP
          SPI Size                   : 0
          Transform 1/16
            Transform ID             : IKE
            Life type                : Seconds
            Life duration            : 28800
            Encryption algorithm     : Rijndael-cbc (aes)
            Key length               : 256
            Authentication method    : Pre-Shared Key
            Hash algorithm           : Unknown IKE hash alg
            Group description        : MODP 1024
          Transform 2/16
            Transform ID             : IKE
            Life type                : Seconds
            Life duration            : 28800
            Encryption algorithm     : Rijndael-cbc (aes)
            Key length               : 256
            Authentication method    : Pre-Shared Key
            Hash algorithm           : SHA256
            Group description        : MODP 1024
          Transform 3/16
            Transform ID             : IKE
            Life type                : Seconds
            Life duration            : 28800
            Encryption algorithm     : Rijndael-cbc (aes)
            Key length               : 256
            Authentication method    : Pre-Shared Key
            Hash algorithm           : SHA512
            Group description        : MODP 1024
          Transform 4/16
            Transform ID             : IKE
            Life type                : Seconds
            Life duration            : 28800
            Encryption algorithm     : Rijndael-cbc (aes)
            Key length               : 256
            Authentication method    : Pre-Shared Key
            Hash algorithm           : SHA
            Group description        : MODP 1024
          Transform 5/16
            Transform ID             : IKE
            Life type                : Seconds
            Life duration            : 28800
            Encryption algorithm     : Rijndael-cbc (aes)
            Key length               : 256
            Authentication method    : Pre-Shared Key
            Hash algorithm           : MD5
            Group description        : MODP 1024
          Transform 6/16
            Transform ID             : IKE
            Life type                : Seconds
            Life duration            : 28800
            Encryption algorithm     : Rijndael-cbc (aes)
            Key length               : 128
            Authentication method    : Pre-Shared Key
            Hash algorithm           : SHA512
            Group description        : MODP 1024
          Transform 7/16
            Transform ID             : IKE
            Life type                : Seconds
            Life duration            : 28800
            Encryption algorithm     : Rijndael-cbc (aes)
            Key length               : 128
            Authentication method    : Pre-Shared Key
            Hash algorithm           : Unknown IKE hash alg
            Group description        : MODP 1024
          Transform 8/16
            Transform ID             : IKE
            Life type                : Seconds
            Life duration            : 28800
            Encryption algorithm     : Rijndael-cbc (aes)
            Key length               : 128
            Authentication method    : Pre-Shared Key
            Hash algorithm           : SHA256
            Group description        : MODP 1024
          Transform 9/16
            Transform ID             : IKE
            Life type                : Seconds
            Life duration            : 28800
            Encryption algorithm     : Rijndael-cbc (aes)
            Key length               : 128
            Authentication method    : Pre-Shared Key
            Hash algorithm           : SHA
            Group description        : MODP 1024
          Transform 10/16
            Transform ID             : IKE
            Life type                : Seconds
            Life duration            : 28800
            Encryption algorithm     : Rijndael-cbc (aes)
            Key length               : 128
            Authentication method    : Pre-Shared Key
            Hash algorithm           : MD5
            Group description        : MODP 1024
          Transform 11/16
            Transform ID             : IKE
            Life type                : Seconds
            Life duration            : 28800
            Encryption algorithm     : 3DES-cbc
            Authentication method    : Pre-Shared Key
            Hash algorithm           : SHA256
            Group description        : MODP 1024
          Transform 12/16
            Transform ID             : IKE
            Life type                : Seconds
            Life duration            : 28800
            Encryption algorithm     : 3DES-cbc
            Authentication method    : Pre-Shared Key
            Hash algorithm           : SHA
            Group description        : MODP 1024
          Transform 13/16
            Transform ID             : IKE
            Life type                : Seconds
            Life duration            : 28800
            Encryption algorithm     : 3DES-cbc
            Authentication method    : Pre-Shared Key
            Hash algorithm           : MD5
            Group description        : MODP 1024
          Transform 14/16
            Transform ID             : IKE
            Life type                : Seconds
            Life duration            : 28800
            Encryption algorithm     : DES-cbc
            Authentication method    : Pre-Shared Key
            Hash algorithm           : SHA256
            Group description        : MODP 1024
          Transform 15/16
            Transform ID             : IKE
            Life type                : Seconds
            Life duration            : 28800
            Encryption algorithm     : DES-cbc
            Authentication method    : Pre-Shared Key
            Hash algorithm           : SHA
            Group description        : MODP 1024
          Transform 16/16
            Transform ID             : IKE
            Life type                : Seconds
            Life duration            : 28800
            Encryption algorithm     : DES-cbc
            Authentication method    : Pre-Shared Key
            Hash algorithm           : MD5
            Group description        : MODP 1024
  VID (Vendor ID)
    Payload data length : 16 bytes
    Vendor ID   : 4a 13 1c 81 07 03 58 45 5c 57 28 f2 0e 95 45 2f
    Description : RFC 3947
  VID (Vendor ID)
    Payload data length : 16 bytes
    Vendor ID   : cd 60 46 43 35 df 21 f8 7c fd b2 fc 68 b6 a4 48
    Description : draft-ietf-ipsec-nat-t-ike-02
  VID (Vendor ID)
    Payload data length : 16 bytes
    Vendor ID   : 90 cb 80 91 3e bb 69 6e 08 63 81 b5 ec 42 7b 1f
    Description : draft-ietf-ipsec-nat-t-ike-02
  VID (Vendor ID)
    Payload data length : 16 bytes
    Vendor ID   : 44 85 15 2d 18 b6 bb cd 0b e8 a8 46 95 79 dd cc
    Description : draft-ietf-ipsec-nat-t-ike-00
  VID (Vendor ID)
    Payload data length : 20 bytes
    Vendor ID   : 40 48 b7 d5 6e bc e8 85 25 e7 de 7f 00 d6 c2 d3 80 00 00
                00
    Description : FRAGMENTATION
  VID (Vendor ID)
    Payload data length : 16 bytes
    Vendor ID   : af ca d7 13 68 a1 f1 c9 6b 86 96 fc 77 57 01 00
    Description : draft-ietf-ipsec-dpd-00

2018-06-05 11:25:08: IkeSnoop: core:fw_pub_ip:500 -> eolo:5.90.200.237:49652
Exchange type  : Identity Protection (main mode)
ISAKMP Version : 1.0
Flags          :
Cookies        : 0x55d41a874f052343 -> 0x8368552985bf34c1
Message ID     : 0x00000000
Packet length  : 264 bytes
# payloads     : 10
Payloads:
  SA (Security Association)
    Payload data length : 52 bytes
    DOI : 1 (IPsec DOI)
      Proposal 1/1
        Protocol 1/1
          Protocol ID                : ISAKMP
          SPI Size                   : 0
          Transform 1/1
            Transform ID             : IKE
            Life type                : Seconds
            Life duration            : 28800
            Encryption algorithm     : Rijndael-cbc (aes)
            Key length               : 256
            Authentication method    : Pre-Shared Key
            Hash algorithm           : SHA256
            Group description        : MODP 1024
  VID (Vendor ID)
    Payload data length : 16 bytes
    Vendor ID   : f7 58 f2 26 68 75 0f 03 b0 8d f6 eb e1 d0 03 00
    Description : SafeNet QuickSec
  VID (Vendor ID)
    Payload data length : 16 bytes
    Vendor ID   : 27 ba b5 dc 01 ea 07 60 ea 4e 31 90 ac 27 c0 d0
    Description : draft-stenberg-ipsec-nat-traversal-01
  VID (Vendor ID)
    Payload data length : 16 bytes
    Vendor ID   : 61 05 c4 22 e7 68 47 e4 3f 96 84 80 12 92 ae cd
    Description : draft-stenberg-ipsec-nat-traversal-02
  VID (Vendor ID)
    Payload data length : 16 bytes
    Vendor ID   : 44 85 15 2d 18 b6 bb cd 0b e8 a8 46 95 79 dd cc
    Description : draft-ietf-ipsec-nat-t-ike-00
  VID (Vendor ID)
    Payload data length : 16 bytes
    Vendor ID   : cd 60 46 43 35 df 21 f8 7c fd b2 fc 68 b6 a4 48
    Description : draft-ietf-ipsec-nat-t-ike-02
  VID (Vendor ID)
    Payload data length : 16 bytes
    Vendor ID   : 90 cb 80 91 3e bb 69 6e 08 63 81 b5 ec 42 7b 1f
    Description : draft-ietf-ipsec-nat-t-ike-02
  VID (Vendor ID)
    Payload data length : 16 bytes
    Vendor ID   : 7d 94 19 a6 53 10 ca 6f 2c 17 9d 92 15 52 9d 56
    Description : draft-ietf-ipsec-nat-t-ike-03
  VID (Vendor ID)
    Payload data length : 16 bytes
    Vendor ID   : 4a 13 1c 81 07 03 58 45 5c 57 28 f2 0e 95 45 2f
    Description : RFC 3947
  VID (Vendor ID)
    Payload data length : 16 bytes
    Vendor ID   : af ca d7 13 68 a1 f1 c9 6b 86 96 fc 77 57 01 00
    Description : draft-ietf-ipsec-dpd-00

2018-06-05 11:25:08: IkeSnoop: core:fw_pub_ip:500 <- eolo:5.90.200.237:49652
Exchange type  : Identity Protection (main mode)
ISAKMP Version : 1.0
Flags          :
Cookies        : 0x55d41a874f052343 -> 0x8368552985bf34c1
Message ID     : 0x00000000
Packet length  : 252 bytes
# payloads     : 4
Payloads:
  KE (Key Exchange)
    Payload data length : 128 bytes
  NONCE (Nonce)
    Payload data length : 16 bytes
  NAT-D (NAT Detection)
    Payload data length : 32 bytes
  NAT-D (NAT Detection)
    Payload data length : 32 bytes

2018-06-05 11:25:08: IkeSnoop: core:fw_pub_ip:500 -> eolo:5.90.200.237:49652
Exchange type  : Identity Protection (main mode)
ISAKMP Version : 1.0
Flags          :
Cookies        : 0x55d41a874f052343 -> 0x8368552985bf34c1
Message ID     : 0x00000000
Packet length  : 252 bytes
# payloads     : 4
Payloads:
  KE (Key Exchange)
    Payload data length : 128 bytes
  NONCE (Nonce)
    Payload data length : 16 bytes
  NAT-D (NAT Detection)
    Payload data length : 32 bytes
  NAT-D (NAT Detection)
    Payload data length : 32 bytes

2018-06-05 11:25:09: IkeSnoop: core:fw_pub_ip:4500 <- eolo:5.90.200.237:49540
Exchange type  : Identity Protection (main mode)
ISAKMP Version : 1.0
Flags          : E (encryption)
Cookies        : 0x55d41a874f052343 -> 0x8368552985bf34c1
Message ID     : 0x00000000
Packet length  : 76 bytes
# payloads     : 2
Payloads:
  ID (Identification)
    Payload data length : 8 bytes
    ID : 100.118.228.237
  HASH (Hash)
    Payload data length : 32 bytes

2018-06-05 11:25:09: IkeSnoop: core:fw_pub_ip:4500 -> eolo:5.90.200.237:49540
Exchange type  : Identity Protection (main mode)
ISAKMP Version : 1.0
Flags          : E (encryption)
Cookies        : 0x55d41a874f052343 -> 0x8368552985bf34c1
Message ID     : 0x00000000
Packet length  : 76 bytes
# payloads     : 2
Payloads:
  ID (Identification)
    Payload data length : 8 bytes
    ID : fw_pub_ip
  HASH (Hash)
    Payload data length : 32 bytes

2018-06-05 11:25:09: IkeSnoop: core:fw_pub_ip:4500 <- eolo:5.90.200.237:49540
Exchange type  : Informational
ISAKMP Version : 1.0
Flags          : E (encryption)
Cookies        : 0x55d41a874f052343 -> 0x8368552985bf34c1
Message ID     : 0xa86518ce
Packet length  : 92 bytes
# payloads     : 2
Payloads:
  HASH (Hash)
    Payload data length : 32 bytes
  N (Notification)
    Payload data length : 24 bytes
    Protocol ID  : ISAKMP
    Notification : Initial contact

2018-06-05 11:25:10: IkeSnoop: core:fw_pub_ip:4500 <- eolo:5.90.200.237:49540
Exchange type  : Quick mode
ISAKMP Version : 1.0
Flags          : E (encryption)
Cookies        : 0x55d41a874f052343 -> 0x8368552985bf34c1
Message ID     : 0xf828807a
Packet length  : 652 bytes
# payloads     : 5
Payloads:
  HASH (Hash)
    Payload data length : 32 bytes
  SA (Security Association)
    Payload data length : 540 bytes
    DOI : 1 (IPsec DOI)
      Proposal 1/1
        Protocol 1/1
          Protocol ID                : ESP
          SPI Size                   : 4
            SPI Value                : 0x018bce19
          Transform 1/20
            Transform ID             : Rijndael (aes)
            SA life type             : Seconds
            SA life duration         : 28800
            Encapsulation mode       : UDP Transport
            Key length               : 256
            Authentication algorithm : HMAC-SHA512
          Transform 2/20
            Transform ID             : Rijndael (aes)
            SA life type             : Seconds
            SA life duration         : 28800
            Encapsulation mode       : UDP Transport
            Key length               : 256
            Authentication algorithm : Unknown IPsec authentication alg
          Transform 3/20
            Transform ID             : Rijndael (aes)
            SA life type             : Seconds
            SA life duration         : 28800
            Encapsulation mode       : UDP Transport
            Key length               : 256
            Authentication algorithm : HMAC-SHA-1
          Transform 4/20
            Transform ID             : Rijndael (aes)
            SA life type             : Seconds
            SA life duration         : 28800
            Encapsulation mode       : UDP Transport
            Key length               : 256
            Authentication algorithm : HMAC-SHA256
          Transform 5/20
            Transform ID             : Rijndael (aes)
            SA life type             : Seconds
            SA life duration         : 28800
            Encapsulation mode       : UDP Transport
            Key length               : 256
            Authentication algorithm : HMAC-MD5
          Transform 6/20
            Transform ID             : Rijndael (aes)
            SA life type             : Seconds
            SA life duration         : 28800
            Encapsulation mode       : UDP Transport
            Key length               : 128
            Authentication algorithm : HMAC-SHA512
          Transform 7/20
            Transform ID             : Rijndael (aes)
            SA life type             : Seconds
            SA life duration         : 28800
            Encapsulation mode       : UDP Transport
            Key length               : 128
            Authentication algorithm : Unknown IPsec authentication alg
          Transform 8/20
            Transform ID             : Rijndael (aes)
            SA life type             : Seconds
            SA life duration         : 28800
            Encapsulation mode       : UDP Transport
            Key length               : 128
            Authentication algorithm : HMAC-SHA-1
          Transform 9/20
            Transform ID             : Rijndael (aes)
            SA life type             : Seconds
            SA life duration         : 28800
            Encapsulation mode       : UDP Transport
            Key length               : 128
            Authentication algorithm : HMAC-SHA256
          Transform 10/20
            Transform ID             : Rijndael (aes)
            SA life type             : Seconds
            SA life duration         : 28800
            Encapsulation mode       : UDP Transport
            Key length               : 128
            Authentication algorithm : HMAC-MD5
          Transform 11/20
            Transform ID             : 3DES
            SA life type             : Seconds
            SA life duration         : 28800
            Encapsulation mode       : UDP Transport
            Authentication algorithm : HMAC-SHA512
          Transform 12/20
            Transform ID             : 3DES
            SA life type             : Seconds
            SA life duration         : 28800
            Encapsulation mode       : UDP Transport
            Authentication algorithm : Unknown IPsec authentication alg
          Transform 13/20
            Transform ID             : 3DES
            SA life type             : Seconds
            SA life duration         : 28800
            Encapsulation mode       : UDP Transport
            Authentication algorithm : HMAC-SHA-1
          Transform 14/20
            Transform ID             : 3DES
            SA life type             : Seconds
            SA life duration         : 28800
            Encapsulation mode       : UDP Transport
            Authentication algorithm : HMAC-SHA256
          Transform 15/20
            Transform ID             : 3DES
            SA life type             : Seconds
            SA life duration         : 28800
            Encapsulation mode       : UDP Transport
            Authentication algorithm : HMAC-MD5
          Transform 16/20
            Transform ID             : DES
            SA life type             : Seconds
            SA life duration         : 28800
            Encapsulation mode       : UDP Transport
            Authentication algorithm : HMAC-SHA512
          Transform 17/20
            Transform ID             : DES
            SA life type             : Seconds
            SA life duration         : 28800
            Encapsulation mode       : UDP Transport
            Authentication algorithm : Unknown IPsec authentication alg
          Transform 18/20
            Transform ID             : DES
            SA life type             : Seconds
            SA life duration         : 28800
            Encapsulation mode       : UDP Transport
            Authentication algorithm : HMAC-SHA-1
          Transform 19/20
            Transform ID             : DES
            SA life type             : Seconds
            SA life duration         : 28800
            Encapsulation mode       : UDP Transport
            Authentication algorithm : HMAC-SHA256
          Transform 20/20
            Transform ID             : DES
            SA life type             : Seconds
            SA life duration         : 28800
            Encapsulation mode       : UDP Transport
            Authentication algorithm : HMAC-MD5
  NONCE (Nonce)
    Payload data length : 16 bytes
  ID (Identification)
    Payload data length : 8 bytes
    ID : 100.118.228.237
  ID (Identification)
    Payload data length : 8 bytes
    ID : fw_pub_ip

2018-06-05 11:25:10: IkeSnoop: core:fw_pub_ip:4500 -> eolo:5.90.200.237:49540
Exchange type  : Informational
ISAKMP Version : 1.0
Flags          : E (encryption)
Cookies        : 0x55d41a874f052343 -> 0x8368552985bf34c1
Message ID     : 0xc24b7294
Packet length  : 130 bytes
# payloads     : 2
Payloads:
  HASH (Hash)
    Payload data length : 32 bytes
  N (Notification)
    Payload data length : 62 bytes
    Protocol ID  : ESP
    Notification : No proposal chosen
    Notification data:
      Notify message version: 1
      Error text: "Could not find acceptable proposal"
      Offending message ID: 0xf828807a

Thanks

Peter
Posts: 696
Joined: 10 Apr 2008, 14:14
Location: Clavister HQ - Örnsköldsvik

Re: L2TP/IPSec VPN from Android 8.0

Post by Peter » 07 Jun 2018, 07:42

Hello.

There is a fairly good chance that this is caused by a known issue that could cause a seemingly good IPsec tunnel negotiation to fail. The problem exists in version 11.20.xx and 12.00.xx (most likely 11.xx as well).

The problem is fixed but there is no release version available yet with the fix, the preliminary release note for this problem is as follows (may be subject to change):
COP-20786: Unknown algorithms in received IPsec proposal lists for IKEv1 could fail the whole negotiation.
The preliminary fix versions are : 11.00.12, 11.20.07 and 12.00.11.

There is a TP (technical preview /TP) version available if you need access to this correction as soon as possible. Please register a support ticket and refer to this post (or COP-20786) if so.

Best regards
/Peter

twproject
Posts: 3
Joined: 26 Jun 2009, 10:27

Re: L2TP/IPSec VPN from Android 8.0

Post by twproject » 07 Jun 2018, 09:16

Thank a lot Peter,
the problem is that the firewall is an old SG51 that i use in the dev department :x :x :x with an old release 10.21.01 so i think there is no way to fix the issue on that :roll:

dwayne22
Posts: 1
Joined: 24 Jul 2018, 09:52

Re: L2TP/IPSec VPN from Android 8.0

Post by dwayne22 » 24 Jul 2018, 09:58

can't you change the firewall then?

Post Reply