So as rtilak already pointed out phase2 SAs are missing and you don't have any proxy-ids definded. With route base vpns, it might be an issue that peers can't negotiate proper SAs.
Try to match phase2 with the opposite side.
Concluding from your security policies try to add
set security ipsec vpn VPN_Finep_Site_to_Site proxy-identity local 192.168.4.0/24 set security ipsec vpn VPN_Finep_Site_to_Site proxy-identity remote 10.2.18.0/23
and see if it does any good.
It that doesn't help, you have to coordinate with the ooposite side.
Also 'request security ike debug-enable..' might get additional insight on what is happening during the negotiations.
