VPN setup w/ router and SSH sentinel

[Boneless]

Need some help configuring a router for a home-office VPN. The error is "Cannot establish a security association for the virtual IP protocol. Cannot run the diagnostics. The remote end cannot find suitable IPSec proposal(phase-2)parameters. Verify the IPSec proposal parameters.

Sentinel proposol parameters:
IKE proposal
Encryption - 3DES
Integrity function - MD5
IKE mode - main mode
IKE group - MODP 768 (group 1)

IPSec proposal
Encryption - 3DES
Integrity function - HMAC-SHA-1
IPSec mode - tunnel
PFS group - MODP 768 (group 1)



Router settings:

Encryption 3DES
Authentication MD5

Advanced settings

Phase 1 - main mode

Proposal 1
encryption - DES
authentication SHA
group - 768-bit
key lifetime - 3600 seconds

proposal 2
encryption - 3DES
authentication - MD5
PFS - ON
group - 768-bit
key lifetime - 3600 seconds

other settings
Anti-replay is enabled


Any suggestions?

[Great_One]

who is the router manufacturer?

[Boneless]

oops, that would be important wouldn't it. It is the BEFX41 by Linksys. Exactly the same documentation as the BEVP41 except mine supports 2 tunnels while the other supports 70 tunnels, and minor upgrades in menus, but 99% identical user guides.

BTW, if anyone is curious, The BEVP41 has a second co-processor to decrypt IPSec to support the tunnels, while mine does not. So the BEFX41 would be more processor intensive. That is the main difference between the two.