traffic selectors 192.168.0.14/32 === 192.168.1.11/32 inacceptable If you don't configure any traffic selectors, strongSwan will propose a host-to-host tunnel between the local and the remote address.
Tips & Tricks: Why Use a VPN Proxy ID? Feb 25, 2019 VPN tunnel can not be established / no traffic passes when VPN tunnel can not be established / no traffic passes over VPN tunnel when SHA-384 is configured for data integrity. IKE: Auth exchange: Peer's message is unacceptable . IPsec VPN tunnel is established between peers, but no traffic passes over the tunnel in the following scenario: ASA IKEv2 Debugs for Site-to-Site VPN with PSKs - Cisco Mar 06, 2013 VPN: The log shows "payload processing failed" error
Traffic Selectors in Route-Based VPNs - TechLibrary
IKEv2 Phase 1 is successful. IKE Phase 2 fails with "Traffic Selector Unacceptable" if there are more than 255 Traffic Selectors, although the proposed IP address is in policy. Unfortunately Yes, IKEv2 does not supports to configure Traffic selectors asof yet and hence you need to have multiple vpns configured under the [edit security ipsec vpn] heirarchy with each vpn having different proxy-id's in it. The below KB can serve as an example of how to configure multiple vpn configuration with different proxy IDs.
How I Created a Palo Alto and Azure Site-to-Site IPsec VPN
Re: [IPsec] IKEv2 Traffic Selector narrowing questions Feb 14, 2012 Dell SonicWALL Basic VPN Configuration