chyby v me konfiguraci ipsecu
Zdenek Kaminski
sutr na valasske-laboratore.cz
Úterý Březen 18 13:04:05 CET 2008
On Tue, 18 Mar 2008, Michal Dobes wrote:
> Vyjma již zmíněného problému s právy by ještě stálo za
> pokus doplnit sem něco jako:
> peers_identifier address 194.228.231.162;
>
> Samozřejmě za předpokladu, že je používána pro identifikaci
> protistrany IP adresa. To by vám měla říci i protistrana,
> jak je to nastaveno (může být i email, doména, ...).
Zkusim z protistrany vymamit, nicmene pokud jsem pridal vyse uvedeny
radek, v logu se objevilo:
Mar 18 14:26:31 proxy racoon: 2008-03-18 14:26:31: INFO: IPsec-SA request for 194.228.231.162 queued due to no phase1 found.
Mar 18 14:26:31 proxy racoon: 2008-03-18 14:26:31: INFO: initiate new phase 1 negotiation: 90.183.41.194[500]<=>194.228.231.162[500]
Mar 18 14:26:31 proxy racoon: 2008-03-18 14:26:31: INFO: begin Identity Protection mode.
Mar 18 14:26:31 proxy racoon: 2008-03-18 14:26:31: WARNING: No ID match.
Mar 18 14:26:31 proxy racoon: 2008-03-18 14:26:31: INFO: ISAKMP-SA established 90.183.41.194[500]-194.228.231.162[500] spi:3ee3eb74ec337490:947ecc885861238f
Mar 18 14:26:32 proxy racoon: 2008-03-18 14:26:32: INFO: initiate new phase 2 negotiation: 90.183.41.194[500]<=>194.228.231.162[500]
Mar 18 14:26:32 proxy racoon: 2008-03-18 14:26:32: ERROR: unknown notify message, no phase2 handle found.
Bez onoho radku vidim:
Mar 18 14:29:27 proxy racoon: 2008-03-18 14:29:27: INFO: IPsec-SA request for 194.228.231.162 queued due to no phase1 found.
Mar 18 14:29:27 proxy racoon: 2008-03-18 14:29:27: INFO: initiate new phase 1 negotiation: 90.183.41.194[500]<=>194.228.231.162[500]
Mar 18 14:29:27 proxy racoon: 2008-03-18 14:29:27: INFO: begin Identity Protection mode.
Mar 18 14:29:28 proxy racoon: 2008-03-18 14:29:28: INFO: ISAKMP-SA established 90.183.41.194[500]-194.228.231.162[500] spi:793232fb242a7a92:d404f03b6d3f83db
Mar 18 14:29:28 proxy racoon: 2008-03-18 14:29:28: INFO: initiate new phase 2 negotiation: 90.183.41.194[500]<=>194.228.231.162[500]
Mar 18 14:29:28 proxy racoon: 2008-03-18 14:29:28: ERROR: unknown notify message, no phase2 handle found.
Cili vzdy se dostanu uspesne pres phase 1 a pak chcipnu :-(
Z.K.
--
Wallachian Laboratories? Freeride in UN*X systems...
Další informace o konferenci Linux