Support Center > Search Results > SecureKnowledge Details
Traffic does not pass through the VPN tunnel between interoperable device and 1100 Appliance Technical Level
  • On a locally managed 1100 appliance, attempting to configure a site-to-site VPN results in a successful phase 1 and phase 2 negotiation, but no traffic is able to pass through the tunnel.

  • The ike.elg shows that phase 1 IKE and phase 2 IPSEC SAs are established, but the 1100 gateway still attempts to negotiate a new IKE SA.

  • The second IKE SA is rejected by the interoperable device with 'pre-shared key mismatch' or 'cookie mismatch' error messages on the interoperable device.

Note: To view this solution you need to Sign In .