Hi All,

I am having trouble transmitting traffic across a VPN I have configured.

The remote end device is not an fortigate and there is bit of a language barrier with the engineer on that side.

On my end the VPN shows as down, and generating the specified traffic does not bring it up.

If I manually click the "Bring UP" button it shows as up but I am still unable to send traffic across it.

On the far end the engineer is reporting that Phase-1 is up, but not Phase-2.

Doing a debug on my fortigate I see this:

2017-01-25 13:28:34 ike 13:HNK-P1: ignoring IKE request, interface is administratively down 2017-01-25 13:28:34 ike 13:f16e4e6116823a62/0000000000000000:3580246: negotiation failure 2017-01-25 13:28:34 ike Negotiate ISAKMP SA Error: 2017-01-25 13:28:34 ike 13:f16e4e6116823a62/0000000000000000:3580246: no SA proposal chosen

I am not able to find any informations on the 1st line, but i can confirm all the interfaces on the VDOM are up.

On the 3rd line I can confirm there are policies applied to both the incoming and outgoing direction and I am even seeing hits on the outgoing side.

Any guidance will be highly appreciated.

Thanks,

Luwellan