Hi Group I am really ready to pull the hair out of my head. 🙂 For 3 months or so, I have had a VPN between my PA-200 to a PA-500 at my remote office. All was working fine. Last night I come back into the office to find the VPN down, and not sure why. I am looking at my PA-200 which has exact configuration. I can see via my pcaps that I am attempting to transmit my IPSEC traffic via agressive mode from my PA-200 to my destination PA-500 FW. On my PA-500, I look in the system logs, and am seeing countless of messages "failed starting phase1" Ok, I re-did my entire configuration on the PA-500, deleted old config, commit, created new config, and then commit. Still getting failed starting phase1 I need to understand WHY is happening. I do not have any insight or log to determine why it is failing to start. My PA-200 has dynamic IP, so I know my local PA-200 which be initiating the tunnel. Looking at my traffic logs, and filtering on the public IP of my PA-200, I am not seeing any matching traffic. No changes to my policy, but now, I am starting to open my firewall open in hopes to catch some sort of inbound traffic. I could use some insight on this. Thanks
... View more