Skip to main content
A
Anonymous_User
Contributor
January 25, 2006
Question

delete_phase1_sa Error

  • January 25, 2006
  • 5 replies
  • 26672 views
Can anyone explain this error to me and how I can get rid of it. It comes up in the event log of the Fortigate-200 v2.8 when I try to make a vpn connection delete_phase1_sa Thanks

    5 replies

    A
    Anonymous_UserAuthor
    Contributor
    January 25, 2006
    the phase1 will be deleted on phase2 failure..
    A
    Anonymous_UserAuthor
    Contributor
    January 25, 2006
    Thanks for the reply... but can you please explain it to me in more detail and maybe suggest a fix. Thanks
    A
    Anonymous_UserAuthor
    Contributor
    January 25, 2006
    Hi i can say you what you can review: -check that the proposal (encryption, lifetime, dh group) for the IKE 2nd phase match each other and try to switch off any keepalives/pings or dead peer detection on the Fortinet for both IKE modes. -check the IP settings (remote lan, local lan), they also affect the 2nd phase SA and must correspond to the Fortinet settings/selectors. try to enable some debugging on the fortinet: diag debug ena; diag debug application ike 2 or try to sniff some packet diag sniffer packet wanX ' proto 50 || port 500' bye
    A
    Anonymous_UserAuthor
    Contributor
    January 25, 2006
    Thank you for the help.
    mikelportu
    mikelportu
    New Member
    June 17, 2024

    Hi, same error here.I would like to know what caused the error and how you solved it.

    Terms & ConditionsAccessibility statement