VPN Issue between Cisco ASA and Fortigate 100E

Deepakkhw · ‎12-24-2017

I am facing an issue with VPN between Fortigate and Cisco ASA.

Below the issue:

2017-12-17 04:48:10.655006 ike 0:Cario-ASA:8568: initiator: main mode is sending 1st message... >>>>Fortigate sending first msg 2017-12-17 04:48:23.798276 ike 0: comes 196.x.x.x:500->94.x,x,x:500,ifindex=7.... >>>Got second msg from cisco 2017-12-17 04:48:23.799401 ike 0:Cario-ASA:8569: sent IKE msg (ident_r1send): 94.x.x.x:500->196.x.x.x:500, len=188, id=a3a6f383fee4b5f7/370842f2674124db >>Accepted cisco's proposal and sending 3rd message 2017-12-17 04:48:28.675213 ike 0:Cario-ASA:8568: sent IKE msg (P1_RETRANSMIT): 94.x.x.x:500->196.x.x.x:500, len=288, id=14bf35f4aa8fe26d/0000000000000000 2017-12-17 04:48:29.805189 ike 0:Cario-ASA:8569: sent IKE msg (P1_RETRANSMIT): 94.x.x..x:500->196.x.x.x:500, len=188, id=a3a6f383fee4b5f7/370842f2674124db 2017-12-17 04:48:31.789685 ike 0:Cario-ASA:8569: retransmission, re-send last message 2017-12-17 04:48:40.674973 ike 0:Cario-ASA:8568: negotiation timeout, deleting

Please help to resolve issue:

Regards,

Deepak Kumar

Sidewaysguy · ‎12-29-2017

Hi there,

Can you post the Fortigate vpn config and any errors? Are you absolutely sure that all of the variables match on both sides? For example KeyLife, proposal encryption etc.

VPN Issue between Cisco ASA and Fortigate 100E

Nominate a Forum Post for Knowledge Article Creation

You are leaving our website