Palo Alto Networks Knowledgebase: IPSec VPN with Peer ID Set to FQDN

IPSec VPN with Peer ID Set to FQDN

10535
Created On 08/05/19 19:23 PM - Last Updated 08/05/19 19:48 PM
VPNs
Resolution

Palo Alto Networks firewalls will only accept an FQDN peer ID when the tunnel mode is set to aggressive. If the tunnel is configured for main mode with an FQDN peer ID setup, the following error message will be displayed:

IKE phase-1 negotiation failed. When pre-shared key is used, peer-ID must be type IP address. Received type FQDN.

owner: sraghunandan



Attachments
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClslCAC&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail

Attachments
Choose Language