ssn wrote:Hi,
From what you have informed it seems there is some issue with rekeying, after the VPN is established initially.
Could you share the output of the below command with respect to this VPN;
>show security ipsec inactive-tunnel
Also what do you see in the VPN debugs?
To clarify, the Phase One (IKE) isn't establishing, so here's what I get withthat command:
Total inactive tunnels: 1 Total inactive tunnels with establish immediately: 1 ID Port Nego# Fail# Flag Gateway Tunnel Down Reason 131073 500 0 0 600a29 146.186.24.36 SA not initiated
Here's the output of the kmd-logs:
Oct 28 22:35:13 STATIC-SRX kmd[1471]: Initialized Empty Buffer (44 bytes), Message length: 44 Oct 28 22:35:20 STATIC-SRX kmd[1471]: LIBJSNMP_SA_IPC_REG_ROWS: ns_subagent_register_mibs: registering 4 rows Oct 28 22:35:26 STATIC-SRX kmd[1471]: Config download: Processed 1 - 1 messages Oct 28 22:35:26 STATIC-SRX kmd[1471]: Config download time: 0 seconds Oct 28 22:35:27 STATIC-SRX kmd[1471]: LIBJSNMP_NS_LOG_INFO: INFO: ns_subagent_open_session: NET-SNMP version 5.3.1 AgentX subagent connected