https://community.checkpoint.com/t5/Firewall-and-Security-Management/IKE-failure-no-response-from-peer/m-p/76279#M11501 <P>Hi there,&nbsp;</P><P>I would like create IPsec from checkpoint&nbsp; to transit gateway, but I got following error msg 'IKE failure' and 'no response from peer'. (please see the screenshot)&nbsp;</P><P>I would really appreciate if someone can help me with this issue.&nbsp;</P><P>Thanks a lot.</P><P>Casey</P><P>&nbsp;</P><P>&nbsp;</P><P>&nbsp;</P><DIV class="mceNonEditable lia-copypaste-placeholder">&nbsp;</DIV><P>&nbsp;</P> Tue, 25 Feb 2020 04:17:28 GMT Casey 2020-02-25T04:17:28Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/IKE-failure-no-response-from-peer/m-p/76279#M11501 <P>Hi there,&nbsp;</P><P>I would like create IPsec from checkpoint&nbsp; to transit gateway, but I got following error msg 'IKE failure' and 'no response from peer'. (please see the screenshot)&nbsp;</P><P>I would really appreciate if someone can help me with this issue.&nbsp;</P><P>Thanks a lot.</P><P>Casey</P><P>&nbsp;</P><P>&nbsp;</P><P>&nbsp;</P><DIV class="mceNonEditable lia-copypaste-placeholder">&nbsp;</DIV><P>&nbsp;</P> Tue, 25 Feb 2020 04:17:28 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/IKE-failure-no-response-from-peer/m-p/76279#M11501 Casey 2020-02-25T04:17:28Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/IKE-failure-no-response-from-peer/m-p/76297#M11502 <P>Look here:&nbsp;<A href="https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&amp;solutionid=sk112054" target="_blank">https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&amp;solutionid=sk112054</A></P> <P>&nbsp;</P> <P>There are multiple scenarios, some troubleshooting is required. Follow the SK guidance.</P> Tue, 25 Feb 2020 07:52:49 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/IKE-failure-no-response-from-peer/m-p/76297#M11502 _Val_ 2020-02-25T07:52:49Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/IKE-failure-no-response-from-peer/m-p/76301#M11503 <P>From my perspective and my experience, best next step when facing this message is to consult logs of the peer gateway and perform debug on the peer as well.<BR />In most cases i had there was a mismatch between Phase1 or Phase2 config of the participating gateways and when facing this message i usually find something useful on "the other side"<BR /><BR /></P><P>Cheers<BR />Vincent</P> Tue, 25 Feb 2020 08:18:35 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/IKE-failure-no-response-from-peer/m-p/76301#M11503 Vincent_Bacher 2020-02-25T08:18:35Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/IKE-failure-no-response-from-peer/m-p/158783#M27722 <P>Hi Casey,</P><P>how do you resolved this :&nbsp;<SPAN>IKE failure - no response from peer ?</SPAN></P><P><SPAN>I have similar issue. On my case , it not a routing issue.</SPAN></P> Tue, 04 Oct 2022 22:02:29 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/IKE-failure-no-response-from-peer/m-p/158783#M27722 Abi 2022-10-04T22:02:29Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/IKE-failure-no-response-from-peer/m-p/204880#M38622 <P>I solved it by changing the VPN Tunnel Sharing from subnet pair to each pair for host in the Tunnel Management</P> Fri, 02 Feb 2024 11:28:02 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/IKE-failure-no-response-from-peer/m-p/204880#M38622 simoneciotti 2024-02-02T11:28:02Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/IKE-failure-no-response-from-peer/m-p/208540#M39493 <P>In my case it happened to me with a Cisco router, the problem was in an ACL on the remote peer, associated with the interface as INBOUND match condition, where the esp 500 udp port was being permit, but it blocked the nat-t 4500 udp and the VPN was armed with NAT-T</P><P>We made rules to accept that port but still nothing. Just leaving a rule on the Cisco router like "permit ip any any" everything work.</P><P>In your case I see reject...... with checkpoint.</P> Tue, 12 Mar 2024 18:33:17 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/IKE-failure-no-response-from-peer/m-p/208540#M39493 Lesther_Reyes 2024-03-12T18:33:17Z