Meraki Community

Ajasinski · ‎Dec 13 2018

I have been spinning my wheels for a while on this, hope someone here can point me in the right direction. I cannot get Meraki to connect via site to site VPN with Azure. Event log shows "msg: phase1 negotiation failed due to time up." I looked at this article- https://documentation.meraki.com/MX/Site-to-site_VPN/Troubleshooting_Non-Meraki_Site-to-site_VPN_Pee... but it got me nowhere.

I followed this guide- https://www.virtualizationhowto.com/2017/08/configure-meraki-to-azure-site-to-site-vpn/ and from what I can tell I have everything setup correctly.

We are using the MX450, if that makes a difference.

MacuserJim · ‎Dec 13 2018

Have you tried pinging from the MX to Azure to make sure you can hit it? Have you also done any pcaps to see what traffic is being sent/received?

Also have you considered using the Meraki vMX in Azure?

Ajasinski · ‎Dec 13 2018

Ping is okay, haven't done a pcap yet- was hopeful it was just something simple I was missing. I was not aware that was a Meraki vMX in Azure- definite going to explore that option- thanks!

MacuserJim · ‎Dec 13 2018

You're welcome! I use a vMX in AWS and it is super helpful. If/when you do any pcaps let us know what you find.

PhilipDAth · ‎Dec 13 2018

>Event log shows "msg: phase1 negotiation failed due to time up."

There will be a mis-match in your phase 1 settings. The first thing I would check is the PSK. Have a mis-configured PSK will cause this.

Next check the crypto settings, and the lifetime being used, and make sure they all match.

Meraki Community

Site to Site with Azure not connecting

Site to Site with Azure not connecting