I am configuring a L2L between a CP 1490 and a 5000 box. I am pretty sure the problem lies on the 1490, because we have quite a few tunnels on the 5000 that work just fine -and this is my first time with a 1490 so I might be missing something there.
When I check on the 1490, it says the tunnel is up -I can see the same in the 5000. The logs in the 5000 shows the packets get encrypted and sent on its way.
Checking the logs on the 1490 I see the key gets installed, but I also see this:
IKE failure: Child SA exchange: Received notification from peer: Traffic selectors unacceptable
Are any routes needed in the 1490 for the subnets on the other side? Since this is a Policy-based L2L I guess they are not but I am trying to make sure I am not missing anything.