IPsec - "pfkey" hlaska v logu
linux na edoras.cz
linux na edoras.cz
Pondělí Listopad 14 02:07:50 CET 2005
Pokousim se zprovoznit IPsec tunel - Linux proti jakesi HW krabicce
Pro komunikaci ma byt pouzito isakmp. Pokusil jsem se proto nastavit
racoon. Po spusteni racoonu dostavam nize uvedene hlasky.
Tunel mi nefunguje. :( Zadny error v logu nevidim, nicmene podeziram
tyhle hlasky, ze se mi snazi rici co mam spatne - bohuzel netusim co se
mi to snazi rici.
*2005-11-14 00:02:12: DEBUG: pfkey X_SPDDUMP failed: No such file or
directory
2005-11-14 00:06:52: INFO: unsupported PF_KEY message REGISTER
2005-11-14 00:06:52: INFO: unsupported PF_KEY message 0*
Dokaze mi nekdo poradit, co tyto hlasky znamenaji?
Diky
Jirka Mares
[root na austria-fw sysconfig]# /usr/sbin/racoon -F
Foreground mode.
2005-11-14 00:02:11: INFO: @(#)ipsec-tools 0.5
(http://ipsec-tools.sourceforge.net)
2005-11-14 00:02:11: INFO: @(#)This product linked OpenSSL 0.9.7f 22 Mar
2005 (http://www.openssl.org/)
2005-11-14 00:02:12: DEBUG2: lifetime = 480
2005-11-14 00:02:12: DEBUG2: lifebyte = 0
2005-11-14 00:02:12: DEBUG2: encklen=0
2005-11-14 00:02:12: DEBUG2: p:1 t:1
2005-11-14 00:02:12: DEBUG2: 3DES-CBC(5)
2005-11-14 00:02:12: DEBUG2: MD5(1)
2005-11-14 00:02:12: DEBUG2: 768-bit MODP group(1)
2005-11-14 00:02:12: DEBUG2: pre-shared key(1)
2005-11-14 00:02:12: DEBUG2:
2005-11-14 00:02:12: DEBUG: compression algorithm can not be checked
because sadb message doesn't support it.
2005-11-14 00:02:12: DEBUG2: parse successed.
2005-11-14 00:02:12: DEBUG: open /var/racoon/racoon.sock as racoon
management.
2005-11-14 00:02:12: INFO: 80.121.253.15[500] used as isakmp port (fd=6)
2005-11-14 00:02:12: INFO: 80.121.253.15[500] used for NAT-T
2005-11-14 00:02:12: DEBUG: get pfkey X_SPDDUMP message
2005-11-14 00:02:12: DEBUG2:
02120200 02000000 00000000 6d420000
2005-11-14 00:02:12: DEBUG: pfkey X_SPDDUMP failed: No such file or
directory
2005-11-14 00:06:52: DEBUG: get pfkey REGISTER message
2005-11-14 00:06:52: DEBUG2:
02070000 0f000000 00000000 92420000 05000e00 21b8c233 fb000000 00000000
02008000 80000000 0300a000 a0000000 05000001 00010000 08000f00 0000a08d
0b000000 00000000 02084000 40000000 0308c000 c0000000 07082800 c0010000
0c088000 00010000 fc088000 00010000 fd088000 00010000
2005-11-14 00:06:52: INFO: unsupported PF_KEY message REGISTER
2005-11-14 00:06:52: DEBUG: get pfkey 0 message
2005-11-14 00:06:52: DEBUG2:
02000000 02000000 00000000 92420000
2005-11-14 00:06:52: INFO: unsupported PF_KEY message 0
2005-11-14 00:06:52: DEBUG: get pfkey 0 message
2005-11-14 00:06:52: DEBUG2:
02000000 02000000 00000000 92420000
2005-11-14 00:06:52: INFO: unsupported PF_KEY message 0
2005-11-14 00:39:39: DEBUG: get pfkey REGISTER message
2005-11-14 00:39:39: DEBUG2:
02070000 0f000000 00000000 9e420000 05000e00 01000000 fb000000 00000000
02008000 80000000 0300a000 a0000000 05000001 00010000 08000f00 00506700
0b000000 00000000 02084000 40000000 0308c000 c0000000 07082800 c0010000
0c088000 00010000 fc088000 00010000 fd088000 00010000
2005-11-14 00:39:39: INFO: unsupported PF_KEY message REGISTER
2005-11-14 00:39:39: DEBUG: get pfkey 0 message
2005-11-14 00:39:39: DEBUG2:
02000000 02000000 00000000 9e420000
2005-11-14 00:39:39: INFO: unsupported PF_KEY message 0
2005-11-14 00:39:39: DEBUG: get pfkey 0 message
2005-11-14 00:39:39: DEBUG2:
02000000 02000000 00000000 9e420000
2005-11-14 00:39:39: INFO: unsupported PF_KEY message 0
Další informace o konferenci Linux