Preview Tool

Cisco Bug: CSCua90097 - flexVPN client ikev2 sa stuck at IN-NEG - waiting for AUTH response

Last Modified

Aug 06, 2018

Products (17)

  • Cisco IOS
  • Cisco ASR 901-6CZ-F-D Router
  • Cisco ME 3600X-24TS-M Switch
  • Cisco ASR 901-4C-FT-D Router
  • Cisco ASR 901-6CZ-F-A Router
  • Cisco ASR 901-6CZ-FT-A Router
  • Cisco ASR 901-12C-FT-D Router
  • Cisco 7600 Series Route Switch Processor 720 with 10 Gigabit Ethernet Uplinks
  • Cisco ME 3600X-24FS-M Switch
  • Cisco ME 3600X-24CX-M Switch
View all products in Bug Search Tool Login Required

Known Affected Releases

15.2(4)S 15.3(2)S 15.3TPI21

Description (partial)

flexVPN client ikev2 sa stuck  at IN-NEG with status description: Initiator waiting for AUTH

flexVPN server initial "clear crypto session" command to clear 4K crypto sessions. 
After crypto session recovered, there is 1 ikev2 sa at  flexVPN client stuck at IN-NEG status.
 At flexVPN server, there is no ikev2 peer

Related Community Discussions

IKEV2 Problem
Hallo All ,    I am trying to configure IKEV2 with SVTI but I am facing following error, could you guide me about that.  **************************************************** R4#show crypto ikev2 sa  IPv4 Crypto IKEv2  SA   Tunnel-id Local                 Remote                fvrf/ivrf            Status 1      none/none            IN-NEG       Encr: Unknown - 0, Hash: None, DH Grp:0, Auth sign: Unknown - 0, Auth verify: Unknown - 0       Life/Active ...
Latest activity: Feb 23, 2018
Bug details contain sensitive information and therefore require a account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.