VPN issue "negotiation timeout, deleting - connection expiring due to phase1 down"

Forum|Forum|6 years ago
November 24, 2019
2 replies
8595 views

Hello,

I have many VPN tunnels configured with the same settings

Some of them are down and some are up

The link monitor status is alive

The diagnose debug application ike -1 command shows a negotiation timeout in the phase 1

Does someone have an idea about the root cause?

Thanks for your help

S.

StephaneYahooAuthor

New Member

Issue due to configuration mismatch between peers...

Stemjay

New Member

hi Stephane, iam experiencing a similar challenge are you able to share the parameters that were mimatched or steps taken to resolve

dbu

Staff

Hello,

Negotiation timeout can happen for many reasons.

Did it ever work for those clients ? Or is the issue intermittent?

If Not,Are those peers same type devices ? What vendor/client?

I believe best next action is to take a packet capture. Definitely a packet capture can show you more information on what packets are sent and received.

You can run also the debug " diagnose debug application ike -1"

Regards!

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded