Good day!
We trying to design IPSec tunnel between MS ISA Server 2004 and Cisco2821 using virtual tunnel interface on router.
Problem is: IKE sa formed, IPSec sa not created. Crypto session goes to UP-IDLE.
Debug shown that cisco sent IPSEC "(key eng. msg.)" twice, dont got answer from ISA (in debug: IPSEC(key_engine): request timer fired: count = 2), and then return to IKE phase 1.
There are 2 another VTI tunnels cisco-cisco, that works fine.
Can anyone help with that solutions?