Hello, I tried to setup Policy-based VPN from the below Juniper offical document but there has problem between headquater and remote site. It seems that the VPN tunnel cannot be formed.
Here is the result of 'show security ipsec sa detail:
Local Gateway: 192.168.2.1, Remote Gateway: 172.16.0.1
Local Identity: ipv4_subnet(any:0,[0..7]=0.0.0.0/0)
Remote Identity: ipv4_subnet(any:0,[0..7]=0.0.0.0/0)
Version: IKEv1
DF-bit: clear , Policy-name: VPN_to_RemoteSite
Port: 500, Nego#: 132, Fail#: 0, Def-Del#: 0 Flag: 0x600829
Tunnel events:
Thu Jun 15 2018 10:32:08
: IPSec SA negotiation successfully completed (37 times)
Thu Jun 15 2018 08:00:32
: IKE SA negotiation successfully completed (133 times)
Wed Jun 13 2018 15:12:00
: Negotiation failed with error code NO_PROPOSAL_CHOSEN received from peer (60 times)
Wed Jun 13 2018 14:35:33
: IPSec SA negotiation successfully completed (1 times)
Wed Jun 13 2018 14:35:32
: Negotiation failed with error code NO_PROPOSAL_CHOSEN received from peer (6 times)
Wed Jun 13 2018 13:45:05
: IPSec SA negotiation successfully completed (26 times)
Wed Jun 13 2018 10:33:00
: Negotiation failed with error code NO_PROPOSAL_CHOSEN received from peer (63 times)
Wed Jun 13 2018 09:33:38
: IPSec SA negotiation successfully completed (2 times)
Wed Jun 13 2018 08:45:11
: Negotiation failed with error code NO_PROPOSAL_CHOSEN received from peer (1 times)
Kind regards,
R