Thank you for getting back to me.
I've connected to the VPN, and here's my IKE security association:
ec2-user@VSRX2> show security ike security-associations index 5433716 detail
IKE peer 50.78.186.13, Index 5433716, Gateway Name: Corios-VPN-IKE-GW
Role: Responder, State: UP
Initiator cookie: e8b87ff25a407004, Responder cookie: 4cfd7eaa01a600db
Exchange type: Aggressive, Authentication method: Pre-shared-keys
Local: 10.132.0.85:4500, Remote: 50.78.186.13:14208
Lifetime: Expires in 28664 seconds
Reauth Lifetime: Disabled
IKE Fragmentation: Disabled, Size: 0
Remote Access Client Info: Exclusive Client
Peer ike-id: itadmins@coriosgroup.com
AAA assigned IP: 10.132.3.194
Algorithms:
Authentication : hmac-sha256-128
Encryption : aes256-cbc
Pseudo random function: hmac-sha256
Diffie-Hellman group : DH-group-19
Traffic statistics:
Input bytes : 2512
Output bytes : 912
Input packets: 7
Output packets: 5
Input fragmentated packets: 0
Output fragmentated packets: 0
IPSec security associations: 1 created, 0 deleted
Phase 2 negotiations in progress: 1
Negotiation type: Quick mode, Role: Responder, Message ID: 0
Local: 10.132.0.85:4500, Remote: 50.78.186.13:14208
Local identity: 52.37.18.20
Remote identity: itadmins@coriosgroup.com
Flags: IKE SA is created
Here's my IPSEC SA
ec2-user@VSRX2> show security ipsec security-associations index 67109296 detail
ID: 67109296 Virtual-system: root, VPN Name: Corios-VPN
Local Gateway: 10.132.0.85, Remote Gateway: 50.78.186.13
Traffic Selector Name: TS1
Local Identity: ipv4(0.0.0.0-255.255.255.255)
Remote Identity: ipv4(10.132.3.194)
Version: IKEv1
DF-bit: clear, Copy-Outer-DSCP Disabled, Bind-interface: st0.9
Port: 14208, Nego#: 1925, Fail#: 28, Def-Del#: 0 Flag: 0x24608f29
Multi-sa, Configured SAs# 1, Negotiated SAs#: 1
Tunnel events:
Thu May 23 2019 15:13:23: IPSec SA negotiation successfully completed (1 times)
Thu May 23 2019 15:13:23: Tunnel is ready. Waiting for trigger event or peer to trigger negotiation (1 times)
Thu May 23 2019 15:13:00: IKE SA negotiation successfully completed (1 times)
Direction: inbound, SPI: d2674b17, AUX-SPI: 0
, VPN Monitoring: -
Hard lifetime: Expires in 3361 seconds
Lifesize Remaining: Unlimited
Soft lifetime: Expires in 2803 seconds
Mode: Tunnel(0 0), Type: dynamic, State: installed
Protocol: ESP, Authentication: None, Encryption: aes-gcm (256 bits)
Anti-replay service: counter-based enabled, Replay window size: 64
Direction: outbound, SPI: c9677cb1, AUX-SPI: 0
, VPN Monitoring: -
Hard lifetime: Expires in 3361 seconds
Lifesize Remaining: Unlimited
Soft lifetime: Expires in 2803 seconds
Mode: Tunnel(0 0), Type: dynamic, State: installed
Protocol: ESP, Authentication: None, Encryption: aes-gcm (256 bits)
Anti-replay service: counter-based enabled, Replay window size: 64
These lifetime values don't match the 86400 I have in the config, so I guess we can see why the VPN is being disconnected. If anyone has any insight about what I need to change I'll be thankful.