Skip to content
By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post
About re:Post

VPN site to site connexion, IKE-phase 1 Negociation failed as initiator, ... due to timeout

0

I configured VPN Connexion site to site AWS, and when the connexion was made from the other side, the IKE-Phase 1 is FAILED (Due to timeout). Here are the error notifications per events: Event 1: ike-nego-p1-start => IKE phase-1 negociation is started as initiator, main mode. Initiated SA: XX.XX.XX.XX[500]-YY.YY.YY.YY[500] cookie:... Event 2: ike-nego-p1-fail => IKE phase-1 negociation is failed as initiator, main mode. Failed SA: XX.XX.XX.XX[500]-YY.YY.YY.YY[500] cookie:... Due to timeout. Event 3: ike-nego-p1-deleted => IKE phase-1 SA is deleted SA XX.XX.XX.XX[500]-YY.YY.YY.YY[500] cookie:...

Could you please help how to resolve this issue? Thanks

Topics
DevOpsNetworking & Content Delivery
Tags
VPC Virtual Private GatewayAWS Virtual Private Network (VPN)DevOps
Language
English

asked 2 years ago874 views

1 Answer
1

Hello,

Please check the parameters on both side for phase 1 and phase 2 it should be exactly matched. and Please there should be firewall allow the traffic on your side on port 500 /4500 from amazon peer to make the connection established.

Feel free to reach out AWS support for any deep dive .

AWS

answered 2 years ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Relevant content