Home

Forums

Stories

Knowledge Base

Business Community > Gateways > Sangfor and Omada IPSEC issue

< Gateways

Sangfor and Omada IPSEC issue

eknetop

Yesterday

Posts: 1

Helpful: 0

Solutions: 0

Stories: 0

Registered: 2026-03-12

Sangfor and Omada IPSEC issue

Yesterday

Tags: #VPN

Model: ER707-M2

Hardware Version: V2

Firmware Version: 1.3.1

Omada ER707-M2 VPN (Initiator)
1.WAN IP Type:Static IP
2.Authen Key Type:Preshared Key
3.Remote Gateway:WAN IP of NSF 3200A-I
4.Remote Subnet:Local subnet of NSF 3200A-I
5.IKEv2
6.Phase 1: Proposal:SHA1-AES128-DH5 Local ID Type:Name Local ID:hntohq1 Remote ID Type:Name Remote ID:hqtohn1 SA Lifetime:28800 DPD:enable DPD interval:10
7.Phase 2: Encapsulation:Tunnel Mode Proposal:ESP-SHA1-AES128 PFS:dh5 SA Lifetime:28800

Sangfor NSF3200A-I
1.Peer IP Address Type:Static IP
2:Peer IP Address:WAN IP of ER707-M2
3.Authen Key Type:Preshared Key
4.Phase 1: Proposal:SHA1-AES128-DH5 Local ID Type:Name Local ID:hntohq1 Remote ID Type:Name Remote ID:hqtohn1 SA Lifetime:28800 DPD:enable DPD interval:10
5.Phase 2: Proposal:ESP-AES128-SHA128-DH5

Still getting the error msg as below.
Phase 1 of IKE negotiation failed : Error = NO_PROPOSAL_CHOSEN[14])

3 Reply

MR.S

LV6

Yesterday

Posts: 3149

Helpful: 1106

Solutions: 453

Stories: 0

Registered: 2018-08-17

Re:Sangfor and Omada IPSEC issue

Yesterday

@eknetop

If you have a fixed public IP, you don't need to use Remote ID. What IKE version are you using on the site with the Sangfor NSF3200A-I?

MR.S

LV6

Yesterday - last edited Yesterday

Posts: 3149

Helpful: 1106

Solutions: 453

Stories: 0

Registered: 2018-08-17

Re:Sangfor and Omada IPSEC issue

Yesterday - last edited Yesterday

@eknetop

If you are going to use ID, you must make sure that the remote and local ID match, you have set the remote and local ID to the same on both VPN tunnels.

Remote ID is Local ID om the remote VPN tunnel.

Hank21

9 hours ago

Posts: 3915

Helpful: 776

Solutions: 524

Stories: 8

Registered: 2021-12-13

Re:Sangfor and Omada IPSEC issue

9 hours ago

Hi @eknetop

You may refer to the following guide to setup the IPsec VPN tunnel between your ER707-M2 and the third party router:

How to Set up Site-to-Site Manual IPsec VPN Tunnels on Omada Gateway in Controller Mode

Best Regards! >> Omada EAP Firmware Trial Available Here << >> Get the Latest Omada SDN Controller Releases Here << *Try filtering posts on each forum by Label of [Early Access]*

Sangfor and Omada IPSEC issue

Sangfor and Omada IPSEC issue

Information

Voters 0

Tags