IKE Initiator does not start negotiation after receiving DELETE payload from peer
search cancel

IKE Initiator does not start negotiation after receiving DELETE payload from peer

book

Article ID: 306204

calendar_today

Updated On:

Products

VMware NSX

Issue/Introduction

Symptoms:
  • Peer sends DELETE payload due to IKE session reconfiguration
  • Peer sends DELETE payload to tear down the IKE session administratively


Environment

VMware NSX-T Data Center
VMware NSX-T Data Center 2.x

Cause

This issue occurs because this is the industry standard followed by IKE initiator implementations. NSX-V also behaves in the similar fashion to avoid continuous IKE negotiation attempts.

Resolution

To resolve this issue, you can resume the IKE negotiation by starting data traffic from initiator to the peer subnet.