HiRSA-Sig is basically using RSA Nonces(which are only used in IKEv1, not IKEv2), take a look here;http://www.ciscopress.com/articles/article.asp?p=25474&seqNum=5In summary you have the peers public key, but this is just the key and not sent in a cer...
Hi
The following indicates that the IPsec transform set is not correct;
017668: Oct 23 15:23:53.135 UTC: IKEv2:(SA ID = 1):[IPsec -> IKEv2] Callback received for the validate proposal - FAILED.
017669: Oct 23 15:23:53.139 UTC: IKEv2:(SESSION ID = 6...
packets 7 and 8 are the IKEv2, so you receive the SA_INIT reply from the headend, but then don't move to IKE_AUTH (or there's none sent). Actually - i noticed that your client then sends a HTTPS over 443, do you have your any connect setting configur...