Exam 156-215.80 topic 1 question 91 discussion

A See the url below https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk157494&t=1574714200294

I think the key here is the "no other VPN related logs are present" part. That makes me think that they are just beginning to set up IKE, therefore it's failing in Phase 1

In Phase 1 there is IKE SA, in Phase 2 IPSEC SA. CCSE R81.10 Manual pages 373-374

D is the answer : https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk114834

Seems like A is correct https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk157494

http://help.stonesoft.com/onlinehelp/StoneGate/SMC/5.3.5/SGAG/SG_FWIPS_LogFieldValues/VPN_Errors.htm

Anwser is IKE Phase 2

Looks like Phase 2 https://downloads.checkpoint.com/fileserver/SOURCE/direct/ID/11810/FILE/How-To-Troubleshoot-VPN-issues-with-Endpoint-Connect.pdf https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk88780 Summary: Phase-two Quick Mode failure occurs due to configuration/misconfiguration of VPN/encryption domain for firewalls involved in Site-to-Site VPN tunnels. Typically, this occurs when VPN domain group contains either numerous networks, or numerous hosts from different consecutive networks along with network objects. This article discusses troubleshooting the supernetting issue. https://community.cisco.com/t5/vpn-and-anyconnect/vpn-problem-between-cisco-and-check-point/td-p/469149 Quick mode only phase 2? FW errors: IKE: Main Mode Received Notification from Peer: Initial Contact IKE: Main Mode completion. IKE: Quick Mode Received Notification from Peer: no proposal chosen IKE: Quick Mode Received Notification from Peer: no proposal chosen

Shouldn't A be the answer ? https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk157494