Alright, JTAC could solve the problem then.
To me it appears to be a configuration issue.
1. bind-interface is not required for policy based vpn.
2. you need to verify if ike traffic is allowed in you security zone
3. lastly, you need to check you route.
Can you provide below?
1. Snippet of security zones.
2. Snippet of security policy
3. ping to your external-address
4. show route external-address
Regards,
Raveen