Hi, i want to establish a connection between my XG an an SG that's on the customer site. It worked perfectly before but now they have a new WAN uplink and i am not able to connect to their SG when using this new uplink. The remote logfile is just complete empty when i try to connect, my local XG logfile shows this:
2020-02-12 14:53:36 - swanctl --initiate --timeout 15 --child V*******SECVPN-1
initiate failed: CHILD_SA 'V*******SECVPN-1' not established after 15000ms
[IKE] ### queue_child invoking quick_mode_create
[IKE] ### quick_mode_create: 0x7f5f0000b3c0 config 0x7f5f30008bf0
[IKE] found queued QUICK_MODE task with identical child config
[IKE] ### destroy: 0x7f5f2800fd80
[IKE] sending retransmit 5 of request message ID 0, seq 1
[NET] sending packet: from 192.168.30.254[500] to 1**.***.***.**9[500] (260 bytes)
kill -9 13602 > /dev/null 2>&1
2020-02-12 14:53:51 - initiate timeout for V*******SECVPN-1
2020-02-12 14:53:51 - Operation fails status: 255
Before connecting we made sure that the remote gatway ip on the XG is correct and the local interface on the SG is correct, the ID type is "any" and the IPSEC policies didn't change. But seeing the logs i think we're not even getting to the point of IKE negotiating, right?
When switchin back to their old WAN link it works perfect. I just want to make sure that i assume correct, that to problem must be on the "new" uplink. Is there any place else where i can look?
This thread was automatically locked due to age.
