Hi, we configured a Site to Site Connection, using Static Routing, the tunnel successful established phase 1, when it starts phase 2 it crashes, the reason is, by policy of my partner, in their side of the VPN, they only allows specifics host to get connected to their network, but Azure send as local ip the complete network, so the negotiation fails.
The question is, is there any way to configure azure to send the ip that is originating traffic as local ip and not the network?
Being more specific, this is the error on my partner site:
7 Apr 17 2015 17:23:47 713222 Group = XXXX, IP = XXXX, Static Crypto Map check, map = outside_map, seq = 247, ACL does not match proxy IDssrc:192.168.159.0 dst:172.17.X.X
Azure sends the network and not the hosts that is originating the traffic.
This is a Azure Log:
QM State: State corresponding to first roundtripQM SA role: Initiator
Mode: Tunnel Mode
Local Subnet:
IPv4 Addr & Mask: 192.168.159.0/255.255.255.224
Remote Subnet:
IPv4 Addr & Mask: 172.17.X.X/255.255.255.255
Please help!
Will.