chyby v me konfiguraci ipsecu

[Zdenek Kaminski]

On Tue, 18 Mar 2008, Pavel Just wrote:

> Zkuste ještě změnit pořadí exchange_mode.
>

Zmena poradi v exchange modu se projevi v logu pouze tim, ze pribude radek 
NOTIFY a druhy ERROR:

Mar 18 14:35:26 proxy racoon: 2008-03-18 14:35:26: INFO: IPsec-SA request for 194.228.231.162 queued due to no phase1 found.
Mar 18 14:35:26 proxy racoon: 2008-03-18 14:35:26: INFO: initiate new phase 1 negotiation: 90.183.41.194[500]<=>194.228.231.162[500]
Mar 18 14:35:26 proxy racoon: 2008-03-18 14:35:26: INFO: begin Aggressive mode.
Mar 18 14:35:26 proxy racoon: 2008-03-18 14:35:26: NOTIFY: couldn't find the proper pskey, try to get one by the peer's address.
Mar 18 14:35:26 proxy racoon: 2008-03-18 14:35:26: INFO: ISAKMP-SA established 90.183.41.194[500]-194.228.231.162[500] spi:412bcc827e200f2c:f940579238fa7882
Mar 18 14:35:27 proxy racoon: 2008-03-18 14:35:27: INFO: initiate new phase 2 negotiation: 90.183.41.194[500]<=>194.228.231.162[500]
Mar 18 14:35:28 proxy racoon: 2008-03-18 14:35:28: ERROR: unknown notify message, no phase2 handle found.
Mar 18 14:35:57 proxy racoon: 2008-03-18 14:35:57: ERROR: 194.228.231.162 give up to get IPsec-SA due to time up to wait.

Jdu jeste zjistovat od druhe strany hodnoty pro my_identifier a 
peers_identifier, i kdyz nevim, zda to s tim muze souviset.

Z.K.
--
Wallachian Laboratories? Freeride in UN*X systems...