Hey,

We have a tunnel set up between Cisco 1kv 16.12.01a and Cisco ASA 5585 Version 9.12(4)24, P1 is stuck on IKE_SA_INIT with nothing showing on #show crypto ikev2 sa remote. P1 and P2 parameters match between the two devices.

debug:

cisco2#
Apr 10 18:40:25.664: IKEv2-PAK:(SESSION ID = 0,SA ID = 0):Next payload: ENCR, version: 2.0 Exchange type: INFORMATIONAL, flags: RESPONDER Message id: 0, length: 80
cisco2#
Apr 10 18:40:27.663: IKEv2-PAK:(SESSION ID = 0,SA ID = 0):Next payload: ENCR, version: 2.0 Exchange type: INFORMATIONAL, flags: RESPONDER Message id: 0, length: 80
cisco2#
Apr 10 18:40:29.663: IKEv2-PAK:(SESSION ID = 0,SA ID = 0):Next payload: ENCR, version: 2.0 Exchange type: INFORMATIONAL, flags: RESPONDER Message id: 0, length: 80
cisco2#
Apr 10 18:40:41.132: IKEv2-INTERNAL:(SESSION ID = 68522745,SA ID = 28):SM Trace-> SA: I_SPI=E0092E092648C361 R_SPI=0000000000000000 (I) MsgID = 0 CurState: IDLE Event: EV_INIT_SA
Apr 10 18:40:41.132: IKEv2-INTERNAL:(SESSION ID = 68522745,SA ID = 28):SM Trace-> SA: I_SPI=E0092E092648C361 R_SPI=0000000000000000 (I) MsgID = 0 CurState: I_BLD_INIT Event: EV_GET_IKE_POLICY
Apr 10 18:40:41.132: IKEv2-INTERNAL:(SESSION ID = 68522745,SA ID = 28):
Apr 10 18:40:41.379: IKEv2-PAK:(SESSION ID = 68522745,SA ID = 28):Next payload: SA, version: 2.0 Exchange type: IKE_SA_INIT, flags: RESPONDER MSG-RESPONSE Message id: 0, length: 531 
Payload contents: 
SA
cisco2# Next payload: KE, reserved: 0x0, length: 48
last proposal: 0x0, reserved: 0x0, length: 44
Proposal: 1, Protocol id: IKE, SPI size: 0, #trans: 4 last transform: 0x3, reserved: 0x0: length: 12
type: 1, reserved: 0x0, id: AES-CBC
last transform: 0x3, reserved: 0x0: length: 8
type: 2, reserved: 0x0, id: SHA256
Apr 10 18:40:55.665: IKEv2-PAK:(SESSION ID = 0,SA ID = 0):Next payload: ENCR, version: 2.0 Exchange type: INFORMATIONAL, flags: RESPONDER Message id: 0, length: 80
cisco2#
Apr 10 18:40:57.664: IKEv2-PAK:(SESSION ID = 0,SA ID = 0):Next payload: ENCR, version: 2.0 Exchange type: INFORMATIONAL, flags: RESPONDER Message id: 0, length: 80
Apr 10 18:41:11.131: IKEv2-INTERNAL:(SESSION ID = 68522745,SA ID = 20):SM Trace-> SA: I_SPI=20B1C792011D4F99 R_SPI=0000000000000000 (I) MsgID = 0 CurState: IDLE Event: EV_INIT_SA
Apr 10 18:41:11.131: IKEv2-INTERNAL:(SESSION ID = 68522745,SA ID = 20):SM Trace-> SA: I_SPI=20B1C792011D4F99 R_SPI=0000000000000000 (I) MsgID = 0 CurState: I_BLD_INIT Event: EV_GET_IKE_POLICY
Apr 10 18:41:11.131: IKEv2-INTERNAL:(SESSION ID = 68522745,SA ID = 20):
Apr 10 18:41:11.380: IKEv2-PAK:(SESSION ID = 68522745,SA ID = 20):Next payload: SA, version: 2.0 Exchange type: IKE_SA_INIT, flags: RESPONDER MSG-RESPONSE Message id: 0, length: 531 
Payload contents: 
SA
cisco2# Next payload: KE, reserved: 0x0, length: 48
last proposal: 0x0, reserved: 0x0, length: 44
Proposal: 1, Protocol id: IKE, SPI size: 0, #trans: 4 last transform: 0x3, reserved: 0x0: length: 12
type: 1, reserved: 0x0, id: AES-CBC
last transform: 0x3, reserved: 0x0: length: 8
type: 2, reserved: 0x0, id: SHA256