IKEV2 tunnel not getting createdPrivate IP address over IPSEC tunnelPFsense OpenVPN traffic getting routed...

Am I a Rude Number?

What is the wife of a henpecked husband called?

Non-Cancer terminal illness that can affect young (age 10-13) girls?

Can you tell from a blurry photo if focus was too close or too far?

Has any human ever had the choice to leave Earth permanently?

Mathematics and the art of linearizing the circle

How to make ice magic work from a scientific point of view?

What to look for when criticizing poetry?

Using only 1s, make 29 with the minimum number of digits

Making him into a bully (how to show mild violence)

Cat is tipping over bed-side lamps during the night

In Linux what happens if 1000 files in a directory are moved to another location while another 300 files were added to the source directory?

Why avoid shared user accounts?

Eww, those bytes are gross

Dilemma of explaining to interviewer that he is the reason for declining second interview

Graph with overlapping labels

Why am I able to open Wireshark in macOS without root privileges?

Positioning node within rectangle Tikz

Citing paywalled articles accessed via illegal web sharing

Cookies - Should the toggles be on?

Move fast ...... Or you will lose

Gear reduction on large turbofans

Why don't hotels mount air conditioning units outside the rooms?

Why is Agricola named as such?



IKEV2 tunnel not getting created


Private IP address over IPSEC tunnelPFsense OpenVPN traffic getting routed through WAN rather than IPsec tunnelWindows 7 IPsec IKEv2 EAP-TLS errorRoute all traffic through IPSEC tunnelRequired ICMP types for IPSec tunnel?How do you connect to VPN with IKEV2 with EAP-TLS authentication on Ubuntu 16.0.4?IPsec tunnel MTU too smallIPsec IKEv2 on OpenWrt fails to establish tunnelHow to connect to IKEv2 VPN server using command line in Ubuntu?IPsec Tunnel Mode - ping won't work after 15 minutes of no traffic













0















Getting bellow error message while trying to ping.




Feb 12 17:51:11.383 IST: IKEv2-INTERNAL:Processing an item off the pak
queue



Feb 12 17:51:11.384 IST: IKEv2-INTERNAL:Couldn't find matching SA Feb
12 17:51:11.386 IST: IKEv2-ERROR:Couldn't find matching SA: Detected
an invalid IKE SPI Feb 12 17:51:11.388 IST: IKEv2-ERROR:: A supplied
parameter is incorrect Feb 12 17:51:13.048 IST: IKEv2-INTERNAL:Got a
packet from dispatcher







security ipsec







share|improve this question

























  • Welcome to SuperUser! We are going to need some more information in order to help you with this. What device is the VPN server? What device is the VPN client? What are the settings on each end. We need full details. It says you supplied an incorrect parameter so we need to see all the parameters.

    – HackSlash
    Feb 12 at 18:10











  • Hi , I am trying to make the IPsec tunnel between 2 wireless controllers.

    – Chiranjib Goswami
    Feb 14 at 6:57











  • Have found the issue and resolved it as well . There was a Vlan issue

    – Chiranjib Goswami
    Feb 14 at 6:58











  • Please write up the solution as an aswer to your own question. Then accept your answer as correct. This will earn you reputation on this site and close this issue out.

    – HackSlash
    Feb 14 at 16:23
















0















Getting bellow error message while trying to ping.




Feb 12 17:51:11.383 IST: IKEv2-INTERNAL:Processing an item off the pak
queue



Feb 12 17:51:11.384 IST: IKEv2-INTERNAL:Couldn't find matching SA Feb
12 17:51:11.386 IST: IKEv2-ERROR:Couldn't find matching SA: Detected
an invalid IKE SPI Feb 12 17:51:11.388 IST: IKEv2-ERROR:: A supplied
parameter is incorrect Feb 12 17:51:13.048 IST: IKEv2-INTERNAL:Got a
packet from dispatcher







security ipsec







share|improve this question

























  • Welcome to SuperUser! We are going to need some more information in order to help you with this. What device is the VPN server? What device is the VPN client? What are the settings on each end. We need full details. It says you supplied an incorrect parameter so we need to see all the parameters.

    – HackSlash
    Feb 12 at 18:10











  • Hi , I am trying to make the IPsec tunnel between 2 wireless controllers.

    – Chiranjib Goswami
    Feb 14 at 6:57











  • Have found the issue and resolved it as well . There was a Vlan issue

    – Chiranjib Goswami
    Feb 14 at 6:58











  • Please write up the solution as an aswer to your own question. Then accept your answer as correct. This will earn you reputation on this site and close this issue out.

    – HackSlash
    Feb 14 at 16:23














0












0








0








Getting bellow error message while trying to ping.




Feb 12 17:51:11.383 IST: IKEv2-INTERNAL:Processing an item off the pak
queue



Feb 12 17:51:11.384 IST: IKEv2-INTERNAL:Couldn't find matching SA Feb
12 17:51:11.386 IST: IKEv2-ERROR:Couldn't find matching SA: Detected
an invalid IKE SPI Feb 12 17:51:11.388 IST: IKEv2-ERROR:: A supplied
parameter is incorrect Feb 12 17:51:13.048 IST: IKEv2-INTERNAL:Got a
packet from dispatcher







security ipsec







share|improve this question
















Getting bellow error message while trying to ping.




Feb 12 17:51:11.383 IST: IKEv2-INTERNAL:Processing an item off the pak
queue



Feb 12 17:51:11.384 IST: IKEv2-INTERNAL:Couldn't find matching SA Feb
12 17:51:11.386 IST: IKEv2-ERROR:Couldn't find matching SA: Detected
an invalid IKE SPI Feb 12 17:51:11.388 IST: IKEv2-ERROR:: A supplied
parameter is incorrect Feb 12 17:51:13.048 IST: IKEv2-INTERNAL:Got a
packet from dispatcher







security ipsec




security ipsec






share|improve this question















share|improve this question













share|improve this question




share|improve this question








edited Feb 12 at 18:10









HackSlash

2,2621722




2,2621722










asked Feb 12 at 14:29









Chiranjib GoswamiChiranjib Goswami

11




11













  • Welcome to SuperUser! We are going to need some more information in order to help you with this. What device is the VPN server? What device is the VPN client? What are the settings on each end. We need full details. It says you supplied an incorrect parameter so we need to see all the parameters.

    – HackSlash
    Feb 12 at 18:10











  • Hi , I am trying to make the IPsec tunnel between 2 wireless controllers.

    – Chiranjib Goswami
    Feb 14 at 6:57











  • Have found the issue and resolved it as well . There was a Vlan issue

    – Chiranjib Goswami
    Feb 14 at 6:58











  • Please write up the solution as an aswer to your own question. Then accept your answer as correct. This will earn you reputation on this site and close this issue out.

    – HackSlash
    Feb 14 at 16:23



















  • Welcome to SuperUser! We are going to need some more information in order to help you with this. What device is the VPN server? What device is the VPN client? What are the settings on each end. We need full details. It says you supplied an incorrect parameter so we need to see all the parameters.

    – HackSlash
    Feb 12 at 18:10











  • Hi , I am trying to make the IPsec tunnel between 2 wireless controllers.

    – Chiranjib Goswami
    Feb 14 at 6:57











  • Have found the issue and resolved it as well . There was a Vlan issue

    – Chiranjib Goswami
    Feb 14 at 6:58











  • Please write up the solution as an aswer to your own question. Then accept your answer as correct. This will earn you reputation on this site and close this issue out.

    – HackSlash
    Feb 14 at 16:23

















Welcome to SuperUser! We are going to need some more information in order to help you with this. What device is the VPN server? What device is the VPN client? What are the settings on each end. We need full details. It says you supplied an incorrect parameter so we need to see all the parameters.

– HackSlash
Feb 12 at 18:10





Welcome to SuperUser! We are going to need some more information in order to help you with this. What device is the VPN server? What device is the VPN client? What are the settings on each end. We need full details. It says you supplied an incorrect parameter so we need to see all the parameters.

– HackSlash
Feb 12 at 18:10













Hi , I am trying to make the IPsec tunnel between 2 wireless controllers.

– Chiranjib Goswami
Feb 14 at 6:57





Hi , I am trying to make the IPsec tunnel between 2 wireless controllers.

– Chiranjib Goswami
Feb 14 at 6:57













Have found the issue and resolved it as well . There was a Vlan issue

– Chiranjib Goswami
Feb 14 at 6:58





Have found the issue and resolved it as well . There was a Vlan issue

– Chiranjib Goswami
Feb 14 at 6:58













Please write up the solution as an aswer to your own question. Then accept your answer as correct. This will earn you reputation on this site and close this issue out.

– HackSlash
Feb 14 at 16:23





Please write up the solution as an aswer to your own question. Then accept your answer as correct. This will earn you reputation on this site and close this issue out.

– HackSlash
Feb 14 at 16:23










1 Answer
1






active

oldest

votes


















0














Topology was 2 wireless controller connected via switch and has 2 vlans each , lets say vlan 96 and vlan 97.



SVI for controller 1 :



9.2.96.51 and 9.2.97.12



SVI for controller 2:



9.2.96.12 and 9.2.97.51



I was forming mapping the ipsec crypto map with :



9.2.96.51(controller1) with 9.2.97.51(controller2)



Now when trying to make the IKEV2 tunnel to come up , started ping from controller1 to controller 2 and the packet is getting dropped and tunnel not forming.



Now here whats happening was instead of going to the other VLAN. packet is going to the same VLAN due to which tunnel not getting formed.



Means Packet should go from vlan 96 to vlan 97 but as both vlans are present . so pinging from VLAN 96 of controller 1 goes to VLAn 96 of controller2 instead VLAN 97.



So just shut down the other VLAN and then tried to ping and it worked.






share|improve this answer























    Your Answer








    StackExchange.ready(function() {
    var channelOptions = {
    tags: "".split(" "),
    id: "3"
    };
    initTagRenderer("".split(" "), "".split(" "), channelOptions);

    StackExchange.using("externalEditor", function() {
    // Have to fire editor after snippets, if snippets enabled
    if (StackExchange.settings.snippets.snippetsEnabled) {
    StackExchange.using("snippets", function() {
    createEditor();
    });
    }
    else {
    createEditor();
    }
    });

    function createEditor() {
    StackExchange.prepareEditor({
    heartbeatType: 'answer',
    autoActivateHeartbeat: false,
    convertImagesToLinks: true,
    noModals: true,
    showLowRepImageUploadWarning: true,
    reputationToPostImages: 10,
    bindNavPrevention: true,
    postfix: "",
    imageUploader: {
    brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
    contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
    allowUrls: true
    },
    onDemand: true,
    discardSelector: ".discard-answer"
    ,immediatelyShowMarkdownHelp:true
    });


    }
    });














    draft saved

    draft discarded


















    StackExchange.ready(
    function () {
    StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fsuperuser.com%2fquestions%2f1404859%2fikev2-tunnel-not-getting-created%23new-answer', 'question_page');
    }
    );

    Post as a guest















    Required, but never shown

























    1 Answer
    1






    active

    oldest

    votes








    1 Answer
    1






    active

    oldest

    votes









    active

    oldest

    votes






    active

    oldest

    votes









    0














    Topology was 2 wireless controller connected via switch and has 2 vlans each , lets say vlan 96 and vlan 97.



    SVI for controller 1 :



    9.2.96.51 and 9.2.97.12



    SVI for controller 2:



    9.2.96.12 and 9.2.97.51



    I was forming mapping the ipsec crypto map with :



    9.2.96.51(controller1) with 9.2.97.51(controller2)



    Now when trying to make the IKEV2 tunnel to come up , started ping from controller1 to controller 2 and the packet is getting dropped and tunnel not forming.



    Now here whats happening was instead of going to the other VLAN. packet is going to the same VLAN due to which tunnel not getting formed.



    Means Packet should go from vlan 96 to vlan 97 but as both vlans are present . so pinging from VLAN 96 of controller 1 goes to VLAn 96 of controller2 instead VLAN 97.



    So just shut down the other VLAN and then tried to ping and it worked.






    share|improve this answer




























      0














      Topology was 2 wireless controller connected via switch and has 2 vlans each , lets say vlan 96 and vlan 97.



      SVI for controller 1 :



      9.2.96.51 and 9.2.97.12



      SVI for controller 2:



      9.2.96.12 and 9.2.97.51



      I was forming mapping the ipsec crypto map with :



      9.2.96.51(controller1) with 9.2.97.51(controller2)



      Now when trying to make the IKEV2 tunnel to come up , started ping from controller1 to controller 2 and the packet is getting dropped and tunnel not forming.



      Now here whats happening was instead of going to the other VLAN. packet is going to the same VLAN due to which tunnel not getting formed.



      Means Packet should go from vlan 96 to vlan 97 but as both vlans are present . so pinging from VLAN 96 of controller 1 goes to VLAn 96 of controller2 instead VLAN 97.



      So just shut down the other VLAN and then tried to ping and it worked.






      share|improve this answer


























        0












        0








        0







        Topology was 2 wireless controller connected via switch and has 2 vlans each , lets say vlan 96 and vlan 97.



        SVI for controller 1 :



        9.2.96.51 and 9.2.97.12



        SVI for controller 2:



        9.2.96.12 and 9.2.97.51



        I was forming mapping the ipsec crypto map with :



        9.2.96.51(controller1) with 9.2.97.51(controller2)



        Now when trying to make the IKEV2 tunnel to come up , started ping from controller1 to controller 2 and the packet is getting dropped and tunnel not forming.



        Now here whats happening was instead of going to the other VLAN. packet is going to the same VLAN due to which tunnel not getting formed.



        Means Packet should go from vlan 96 to vlan 97 but as both vlans are present . so pinging from VLAN 96 of controller 1 goes to VLAn 96 of controller2 instead VLAN 97.



        So just shut down the other VLAN and then tried to ping and it worked.






        share|improve this answer













        Topology was 2 wireless controller connected via switch and has 2 vlans each , lets say vlan 96 and vlan 97.



        SVI for controller 1 :



        9.2.96.51 and 9.2.97.12



        SVI for controller 2:



        9.2.96.12 and 9.2.97.51



        I was forming mapping the ipsec crypto map with :



        9.2.96.51(controller1) with 9.2.97.51(controller2)



        Now when trying to make the IKEV2 tunnel to come up , started ping from controller1 to controller 2 and the packet is getting dropped and tunnel not forming.



        Now here whats happening was instead of going to the other VLAN. packet is going to the same VLAN due to which tunnel not getting formed.



        Means Packet should go from vlan 96 to vlan 97 but as both vlans are present . so pinging from VLAN 96 of controller 1 goes to VLAn 96 of controller2 instead VLAN 97.



        So just shut down the other VLAN and then tried to ping and it worked.







        share|improve this answer












        share|improve this answer



        share|improve this answer










        answered 14 mins ago









        Chiranjib GoswamiChiranjib Goswami

        11




        11






























            draft saved

            draft discarded




















































            Thanks for contributing an answer to Super User!


            • Please be sure to answer the question. Provide details and share your research!

            But avoid



            • Asking for help, clarification, or responding to other answers.

            • Making statements based on opinion; back them up with references or personal experience.


            To learn more, see our tips on writing great answers.




            draft saved


            draft discarded














            StackExchange.ready(
            function () {
            StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fsuperuser.com%2fquestions%2f1404859%2fikev2-tunnel-not-getting-created%23new-answer', 'question_page');
            }
            );

            Post as a guest















            Required, but never shown





















































            Required, but never shown














            Required, but never shown












            Required, but never shown







            Required, but never shown

































            Required, but never shown














            Required, but never shown












            Required, but never shown







            Required, but never shown







            -

            Popular posts from this blog

            Couldn't open a raw socket. Error: Permission denied (13) (nmap)Is it possible to run networking commands...

            Image
            Why didn't Boeing produce its own regional jet? What is the most common color to indicate the input-field is disabled? Theorists sure want true answers to this! What is the opposite of "eschatology"? What do you call someone who asks many questions? Is there a hemisphere-neutral way of specifying a season? Is this draw by repetition? Bug? String.split chopping off empty trailing value Is it inappropriate for a student to attend their mentor's dissertation defense? How dangerous is XSS Why do I get negative height? Is it possible to map
            Read more

            VNC viewer RFB protocol error: bad desktop size 0x0I Cannot Type the Key 'd' (lowercase) in VNC Viewer...

            Image
            risk of flooding in petra in november How to get directions in deep space? How could a planet have erratic days? 15% tax on $7.5k earnings. Is that right? Did the UK lift the requirement for registering SIM cards? Is it allowed to activate the ability of multiple planeswalkers in a single turn? Stack Interview Code methods made from class Node and Smart Pointers Non-trope happy ending? What is the highest possible scrabble score for placing a single tile Open a doc from terminal, but not by its name The IT department bottlenecks progress, how should I handle this?
            Read more

            Why not use the yoke to control yaw, as well as pitch and roll? Announcing the arrival of...

            Image
            Does the Mueller report show a conspiracy between Russia and the Trump Campaign? Relating to the President and obstruction, were Mueller's conclusions preordained? How much damage would a cupful of neutron star matter do to the Earth? Nose gear failure in single prop aircraft: belly landing or nose landing? Should a wizard buy fine inks every time he want to copy spells into his spellbook? Can you force honesty by using the Speak with Dead and Zone of Truth spells together? A trigonometry question from STEP examination Special flights What is the "studentd" process? systemd and copy (/bin/cp): no such file or directory
            Read more