That error would mean that the remote router is most likely set up as a One-To-One NAT. Which means that the public IP address is being forwarded to the router whose "Actual" WAN IP address is 10.1.1.1. For most applications this set up is just fine but for IPSec it will not work (some enterprise routers allow us to change settings to allow this to function but not the RVS).
The "ANY" setting is exactly for what you are stating, you can use this setting to enable a "Client to Gateway" connection and may help in your situation so long the other side maintains the connection.
Hope this helps.