Fortinet Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
moshe800
New Contributor

FortiGate 100E

Dear All,

FG100E  v5.4.4,build7650 (GA)

I setup VPN Ipsec site to site to Azure.

Ipsec monitor shown its down. on Azure end connection state: unknown.

Pre shared is correct on both ends,  any idea looking at Forti log where is the issue?

 

Date    08/27/2018 Time    05:05:33 Virtual Domain    root Log Description    Progress IPsec phase 1 Source Local IP    31.168.42.222 User     N/A Group    N/A XAUTH User    N/A XAUTH Group    N/A Action Action    negotiate Status    failure Result    ERROR Security Level     Event Assigned IP    N/A Cookies    3e35c70729dfedef/0000000000000000 Direction    inbound Local Port    500 Outgoing Interface    wan1 Remote IP    216.218.206.74 Remote Port    36121 Role    responder Stage    1 VPN Tunnel    N/A Mode    main Message    progress IPsec phase 1

1 REPLY 1
makco10
Contributor II

Hello,

 

Is important that you check the config in the two sides to confirm that is not a different config of phases.

 

-Check phases 1 and 2 settings.

-Confirm pre-shared key

- change to aggresive mode 

 

In your case I think is a issue with the phases, so review the settings and confirm that you don´t have a mismatch configuration.

 

Regards.