Dear Team Fortinet Comunity
I have issue this VPN IP Sec anomaly error status negotiate and failure and this issue looping errot stat ,
do you have any suggestion for the resolve this issue or manual to fix this problem
Thank you for support and cooperation
Hi @adrianit ,
The logs show the tunnel fails to establish with the message “Peer SA proposal does not match local policy.” For more details, refer to the link below.
To pinpoint the configuration error, we need application-level debug logs. Run these commands:
diagnose vpn ike log-filter dst-addr4 (X.X.X.X) <----- IP address of the remote peer.
diagnose debug application ike -1
diagnose debug enable
BR.
If my answer provided a solution for you, please mark the reply as solved it so that others can get it easily while searching for similar scenarios.
CCIE #68781
User | Count |
---|---|
2624 | |
1392 | |
804 | |
667 | |
455 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2025 Fortinet, Inc. All Rights Reserved.