Please find attached configuration of IPsec and Tunnel Configuration

If I remove the tunnel protection command at both ends, only then tunnel is working fine.

Only at A end the tunnel is going to Reset mode when applying the tunnel protection command

Need your help pls

Sorry I am not that familiar with Flexvpn, I don't know if this document will halp you

http://www.cisco.com/c/en/us/support/docs/security/dynamic-multipoint-vpn-dmvpn/115726-flexvpn-hardmove-same-00.html

regards

Richard.

There is not quite enough config to check.  Need to see the VRF config and config relating to the interfaces.

I would suggest doing a:

debug crypto ikev2

And I bet it will log an error which will make the problem look obvious.

Also you haven't quite gone full iWAN.

If you are doing it that way I think you are going to need an " ip nhrp map <head end tunnel ip>  <head end physical interface ip>" on your spoke, otherwise the spoke wont be able to find the nhs server.

Hi Path

Yes you are right

It was something related to NHRP.

On A end and B end the nhs mapping i did with same IP which resulted in this error if you can see the configs, after correcting it got established.

Hope that this is the root cause.

Thanks for your time and support as well :)

Just one query, is there any chat session available 24*7 global wise for this support forum ?

It would be great if you could mark my answer as correct ... :-)

Hi Richard 

Can you please update on below query please.

I am facing this issue with another device as well..