Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
974
Views
0
Helpful
0
Replies

VPN tunnel on cisco router(Public IP on modem) with Juniper SRX as headend

Gagandeep Kumar
Level 1
Level 1

‎02-06-2015 07:03 AM

We are trying from last two days but We are unable to bring tunnel up between CIsco router 1941 and SRX firewall 550.

 

Setup is simple as below

 

Cisco router--------Modem(Public Dynamic IP possibly PAT)-----------Internet------------SRX 550

Ipsec Tunnel should be between Cisco router and SRX. We are getting below error on Cisco router.

 

Cisco Errors

couldn't find node: message_id xxxxxxxx
ISAKMP (0): Unknown Input IKE_MESG_FROM_PEER, IKE_INFO_NOTIFY:  state = IKE_I_MM1

 

SRX Errors

iked_pm_phase1_sa_cfg_lookup_by_addr: Address based phase 1 SA-CFG lookup failed for local:x.x.x.x, remote:y.y.y.y IKEv1
 iked_pm_dynamic_gw_local_addr_based_lookup: called with local ip:x.x.x.x
  dynamic gateway match unsuccessful:
 iked_pm_ike_spd_select_ike_sa failed. rc 1, error_code: No proposal chosen

 

 

 

 

 

1 person had this problem
Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents