We are having problems with our ipsec sa.
Phase 2 is failing to establish with a high number of send errors.
#send errors 411125
Debug error is
Dec 04 16:00:16 [IKEv1]: Group = 22.214.171.124, IP = 126.96.36.199, Static Crypto Map check, map = outside_map, seq = 6, ACL does not match proxy IDs src:0.0.0.0 dst:network-Local
I know this implies that a matching crypto map is not present but this WAS working until today.
Could anyone help?