Log message right now showing “IKE negotiation failed with error: Timed out.”
It means that you are not receiving replies for your negotiation request
You cannot put PHISICAL interface as your external interface.
gateway gw-vpn-REMOTE-CUST-CAS1 {
ike-policy ike-pol-vpn-REMOTE-CUST-CAS1;
address 32.205.155.234;
dead-peer-detection {
interval 10;
threshold 5;
}
external-interface ge-0/0/7;
}
It should be LOGICAL subinterface that has route to your linux host
It should look like this:
gateway gw-vpn-REMOTE-CUST-CAS1 {
ike-policy ike-pol-vpn-REMOTE-CUST-CAS1;
address 32.205.155.234;
dead-peer-detection {
interval 10;
threshold 5;
}
external-interface ge-0/0/7.1409
}
After you correct this error, check if you can reach remote gateway - 32.205.155.234
Ping it.
If your ping failed - traceroute and find where your ping is failing.
If you are getting to upstream gateway of Linux host, then check if it is getting discarded by linux host firewall.
If everything is good check if your tunnel is up 🙂
Also, do not forget to configure routing statement otherwise traffic will not be sent to the tunnel but to the default gateway.
It should look like this if I understood your configuration correctly:
set routing-options static route 172.22.162.0/24 next-hop st0.1
Regards
Leon Smirnov
Please Mark My Solution Accepted if it Helped, Kudos are Appreciated too