Refer to the exhibit. An IKEv2 site-to-site tunnel between an ASA and a remote peer is not building successfully. What will fix the problem based on the debug output?
A.
Ensure crypto IPsec policy matches on both VPN devices.
B.
Install the correct certificate to validate the peer.
C.
Correct crypto access list on both VPN devices.
D.
Specify the peer IP address in the tunnel group name.
While "C. Correct crypto access list on both VPN devices" is a possibility, it's less likely to be the root cause based on the error message "There was no IPSEC policy found for received TS." This error indicates a mismatch in the IPsec policy, not the access list.
the error message says, "There was no IPSEC POLICY found for received TS"
TS = Traffic selector (IP),
so this means nothing to do with the IP but rather IPSec policy
C - need to modify ACLs to properly identify interesting traffic
upvoted 2 times
...
This section is not available anymore. Please use the main Exam Page.300-730 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
[Removed]
Highly Voted 2 years, 11 months agoiratus_umbra
Most Recent 5 months, 2 weeks ago7df6b1c
9 months, 3 weeks agoshadow2020
1 year, 3 months agokylesam2017
1 year, 4 months agokylesam2017
1 year, 4 months agompls_link
2 years agoBackupz
2 years, 5 months agoAF_Nick
2 years, 9 months ago