Hi Guys,
We are attempting to connect a VPN connection with a 3rd Party - they are using a Cisco PIX (I know) and we are using a Juniper SRX 1500 Cluster with Junos 15
Phase 1 seems to be negotiating fine however I am seeing a wierd issue with Phase 2 as below:-
[Nov 29 17:12:09][OUR-IP <-> THEIR-IP] Authenticated Phase-2 notification `No proposal chosen' (14) data size 4 from THEIR-IP for protocol ESP with invalid spi[0...16]=59 f7 4c 6e 8f 6c c5 d3 54 44 41 63 77 d9 d7 da causes IKE
google turns up very limited results for this log, all phase 2 parameters match - we have changed ESP from 256 to 192 to 128 and still the same issue persists
can anyone shed any light on this ? Is this an incompatibility between Cisco and Juniper ??
No comments:
Post a Comment