Hi,
While I am troubleshooting this error, I thought I would ask for help here too as someone may know the resolution:
I am configuring an SRX1500 and the NCP Client and am getting the following error on IKE Phase 1 initiation:
No Proposal Chosen: 14
I have configured st0.1 to share a physical interface gateway and have placed st0.1 into the Customer-VR and the Customer secuirty Zone and configured it as follows:
set interfaces st0 unit 1 family inet
It shares the physical interface with a site-to-site VPN that works fine (Azure to Juniper).
I am not sure if anyone has seen this error on the NCP client before? There are too many options to put here, but here is the phase 1 SRX configuration:
set security ike proposal ike-prop1 authentication-method pre-shared-keys
set security ike proposal ike-prop1 dh-group group2
set security ike proposal ike-prop1 authentication-algorithm sha1
set security ike proposal ike-prop1 encryption-algorithm aes-192-cbc
set security ike proposal ike-prop1 lifetime-seconds 28800
set security ike policy ike-pol2 mode aggressive
set security ike policy ike-pol2 proposals ike-prop1
set security ike policy ike-pol2 pre-shared-key ascii-text xxxxxxxxx
set security ike gateway remote-vpn1 ike-policy ike-pol2
set security ike gateway remote-vpn1 dynamic hostname "user@wherever.com"
set security ike gateway remote-vpn1 dynamic connections-limit 2
set security ike gateway remote-vpn1 dynamic ike-user-type shared-ike-id
set security ike gateway remote-vpn1 external-interface ge-0/0/1
set security ike gateway remote-vpn1 aaa access-profile vpn-users
set security ike gateway remote-vpn1 version v1-only