Pix's IKe message

Unanswered Question
Apr 13th, 2007

Upgrade a pix firewall. Everything was running, VPN?s, etc. UP graded to version 7 an now I?m seeing this

%PIX-3-713042: IKE Initiator unable to find policy: Intf 1

Now the VPN?s that we have are all active, everything is running. So, what is this message telling me. What policy an I missing.

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
carenas123 Thu, 04/19/2007 - 08:41

Error Message %PIX|ASA-3-713042: IKE Initiator unable to find policy: Intf

interface_number, Src: source_address, Dst: dest_address

Explanation This message indicates that the IPSec fast path processed a packet that triggered IKE, but IKE's policy lookup failed. This error could be timing related. The ACLs that triggered IKE might have been deleted before IKE processed the initiation request. This problem will most likely correct itself.

Explanation If the condition persists, check the L2L configuration, paying special attention to the ACLs associated with crypto maps.

Try this link:


tgrundbacher Wed, 12/16/2009 - 04:57

Hi Denis

Could you solve the issue in the meantime? I'm having the exact same problem for a VPN site-to-site peer with code 8.2(1).

The link that was provided in the succeeding post doesn't work anymore...




This Discussion