Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
New Contributor III

VPN Issue between Cisco ASA and Fortigate 100E

I am facing an issue with VPN between Fortigate and Cisco ASA. 

Below the issue:

2017-12-17 04:48:10.655006 ike 0:Cario-ASA:8568: initiator: main mode is sending 1st message... >>>>Fortigate sending first msg 2017-12-17 04:48:23.798276 ike 0: comes 196.x.x.x:500->94.x,x,x:500,ifindex=7.... >>>Got second msg from cisco 2017-12-17 04:48:23.799401 ike 0:Cario-ASA:8569: sent IKE msg (ident_r1send): 94.x.x.x:500->196.x.x.x:500, len=188, id=a3a6f383fee4b5f7/370842f2674124db >>Accepted cisco's proposal and sending 3rd message 2017-12-17 04:48:28.675213 ike 0:Cario-ASA:8568: sent IKE msg (P1_RETRANSMIT): 94.x.x.x:500->196.x.x.x:500, len=288, id=14bf35f4aa8fe26d/0000000000000000 2017-12-17 04:48:29.805189 ike 0:Cario-ASA:8569: sent IKE msg (P1_RETRANSMIT): 94.x.x..x:500->196.x.x.x:500, len=188, id=a3a6f383fee4b5f7/370842f2674124db 2017-12-17 04:48:31.789685 ike 0:Cario-ASA:8569: retransmission, re-send last message 2017-12-17 04:48:40.674973 ike 0:Cario-ASA:8568: negotiation timeout, deleting


Please help to resolve issue:



Deepak Kumar

New Contributor III

Hi there,


Can you post the Fortigate vpn config and any errors?  Are you absolutely sure that all of the variables match on both sides?  For example KeyLife, proposal encryption etc.

Top Kudoed Authors