VPN to/from Azure

Forum|Forum|7 years ago
December 14, 2018
2 replies
5653 views

Hi guys,

I'm trying to setup VPN between Azure and on-premises FortiGate 50E following this cookbook but no luck.

https://cookbook.fortinet...pn-microsoft-azure-56/

The VPN connection is stuck on:

Action: negotiate

Status: negotiate_error

Reason: peer SA proposal not match local policy

Were there any changes since this article has been written?

Regards

AK_47Author

New Member

OK guys, I'm still stuck on establishing VPN connection between Azure and FortiGate 50E (v5.6.4).

Whatever combination of authentication and encryption algorithms I use nothing works.

And the connection is stuck on phase 1.

Assigned IPN/ACookies DirectioninboundLocal Port500Outgoing Interfacewan1Remote IP Remote Port500RoleresponderVPN TunnelN/AMessageprogress IPsec phase 1

Assigned IPN/ACookies Local Port500Outgoing Interfacewan1Remote IP Remote Port500VPN TunnelN/AMessageIPsec phase 1 error

I'll try to restart the router, but is there anything else worth to try?

AK_47Author

New Member

Phase 1:

DH - 14, 2

AES256 / SHA1

3DES / SHA1

AES256 / SHA256

Phase 2:

AES256 / SHA1

3DES / SHA1

AES256 / SHA256

Hope that helps someone who needs it in the future.

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded