Question 35 of 56 from exam 300-730-SVPN: Implementing Secure Solutions with Virtual Private Networks
Question
![ITKEv2: (SESSION ID = 17,SA ID = 1):Processing IKE_AUTH message
IKEv2: IPSec policy validate request sent for profile Cloudone with psh index 1.
|[KEv2: (SESSION ID = 17,SA ID = 1):
IKEv2: (SA ID = 1): [IPsec -> IKBv2] Callback received for the validate proposal - FAILED.
ITKEv2-ERROR: (SESSION ID = 1):: There was no IPSEC policy found for received TS
IKKEv2: (SESSION ending TS unacceptable notify
I{KEv2: (SESSION t my authentication method
IIKEv2: (SESSION 1):My authentication method is 'PSK'
ITKEv2: (SESSION t peer's preshared key for 68.72.250.251
ITKEv2: (SESSION nerate my authentication data
I{KEv2: (SESSION ID = 1):Use preshared key for id 68.72.250.250, key len 5
Generate IKEv2 authentication data
IKEv2 authentication data generation PASSED
1):Get my authentication method
authentication method is 'PSK'
nerating IKE_AUTH message
ITKEv2: (SESSION ID = 17,SA ID = 1):Constructing IDr payload: '68.72.250.250' of type 'IPv4 address’
[{KEv2: (SESSION ID = 17,SA ID = 1):Building packet for encryption.
Payload contents:
VID IDr AUTH NOTIFY (TS_UNACCEPTABLE)
IIKEv2: (SESSION ID = 17,SA ID = 1):Sending Packet [To 68.72.250.251:500/From 68.72.250.250:500/VRF i0:f0)
[initiator SPI : 3D527B1DSODBEEF4 - Responder SPI : 8C693F77F2656636 Message id: 1
ITKEv2 IKE_AUTH Exchange RESPONSE
Payload contents:
ENCR](https://eaeastus2.blob.core.windows.net/optimizedimages/static/images/Implementing-Secure-Solutions-with-Virtual-Private-Networks-(SVPN-300-730)/question/img0002900001.png)
Refer to the exhibit.
Based on the debug output, which type of mismatch is preventing the VPN from coming up?
Answers
Explanations
Click on the arrows to vote for the correct answer
A. B. C. D.B.
If the responder's policy does not allow it to accept any part of the proposed Traffic Selectors, it responds with a TS_UNACCEPTABLE Notify message.
